CVE-2006-4924
OpenSSH <4.4 - DoS
Title source: llmDescription
sshd in OpenSSH before 4.4, when using the version 1 SSH protocol, allows remote attackers to cause a denial of service (CPU consumption) via an SSH packet that contains duplicate blocks, which is not properly handled by the CRC compensation attack detector.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Tavis Ormandy · bashdosmultiple
https://www.exploit-db.com/exploits/2444
References (79)
... and 59 more
Scores
EPSS
0.5432
EPSS Percentile
98.0%
Details
CWE
CWE-399
Status
published
Products (50)
openbsd/openssh
1.2
openbsd/openssh
1.2.1
openbsd/openssh
1.2.2
openbsd/openssh
1.2.3
openbsd/openssh
1.2.27
openbsd/openssh
2.1
openbsd/openssh
2.1.1
openbsd/openssh
2.2
openbsd/openssh
2.3
openbsd/openssh
2.5
... and 40 more
Published
Sep 27, 2006
Tracked Since
Feb 18, 2026