CVE-2008-0132

Pragma FortressSSH < 5.0 - Denial of Service via Long SSH Input

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-0132. PoCs published by Luigi Auriemma.

AI-analyzed exploit summary The exploit describes a remote denial-of-service vulnerability in Pragma Systems FortressSSH 5.0 due to improper handling of overly long user-supplied input, leading to connection exhaustion. No actual exploit code is provided, only a description and reference link.

Description

Pragma FortressSSH 5.0 Build 4 Revision 293 and earlier handles long input to sshd.exe by creating an error-message window and waiting for the administrator to click in this window before terminating the sshd.exe process, which allows remote attackers to cause a denial of service (connection slot exhaustion) via a flood of SSH connections with long data objects, as demonstrated by (1) a long list of keys and (2) a long username.

Exploits (1)

exploitdb WRITEUP VERIFIED
by Luigi Auriemma · textdosmultiple
https://www.exploit-db.com/exploits/30989

The exploit describes a remote denial-of-service vulnerability in Pragma Systems FortressSSH 5.0 due to improper handling of overly long user-supplied input, leading to connection exhaustion. No actual exploit code is provided, only a description and reference link.

Classification
Writeup 90%
Attack Type
Dos
Complexity
Trivial
Reliability
Theoretical
Target: Pragma Systems FortressSSH 5.0
No auth needed
Prerequisites: Network access to the target SSH server
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (5)

Core 5
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/27141
Third Party Advisory x_refsource_misc
http://aluigi.org/poc/pragmassh.zip
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/39354
Issue Tracking, Mailing List, Third Party Advisory mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=119947184730448&w=2
Third Party Advisory x_refsource_misc
http://aluigi.altervista.org/adv/pragmassh-adv.txt

Scores

EPSS 0.0900
EPSS Percentile 94.6%

Details

CWE
CWE-400
Status published
Products (2)
pragmasys/fortress_ssh 5.0 build4_revision293
pragmasys/fortress_ssh < 5.0
Published Jan 08, 2008
Tracked Since Feb 18, 2026