Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-4726

Overview

Vulnerability Score 9.0 9.0
CVE Id CVE-2008-4726
Last Modified 07 Mar 2011 10:12:56
Published 23 Oct 2008 08:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication SINGLE_INSTANCE

CVE-2008-4726

Summary

Stack-based buffer overflow in the SFTP subsystem in GoodTech SSH 6.4 allows remote authenticated users to execute arbitrary code via a long string to the (1) open (aka SSH_FXP_OPEN), (2) unlink, (3) opendir, and other unspecified parameters.

Vulnerable Systems

Application

  • Goodtechsystems Goodtech Ssh 6.4


References

XF - sshserver-sftp-bo(46038)

VUPEN - ADV-2008-2895

BID - 31879

BUGTRAQ - 20081022 GoodTech SSH Remote Buffer Overflow Exploit

MILW0RM - 6804

SREASON - 4498

SECUNIA - 32375


Last Updated: 27 May 2016 10:48:36