CVE-2008-4109

OpenSSH < 4.3p2 - Denial of Service via Async-Unsafe Signal Handler

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-4109. PoCs published by bigb0x.

AI-analyzed exploit summary This repository contains a bulk scanning tool for detecting OpenSSH vulnerabilities, including CVE-2024-6387 and 19 other CVEs. It performs version checks against target SSH servers to identify potential vulnerabilities without attempting exploitation.

Description

A certain Debian patch for OpenSSH before 4.3p2-9etch3 on etch; before 4.6p1-1 on sid and lenny; and on other distributions such as SUSE uses functions that are not async-signal-safe in the signal handler for login timeouts, which allows remote attackers to cause a denial of service (connection slot exhaustion) via multiple login attempts. NOTE: this issue exists because of an incorrect fix for CVE-2006-5051.

Exploits (1)

nomisec SCANNER 35 stars

by bigb0x · poc

https://github.com/bigb0x/CVE-2024-6387

View Code ZIP pw:eip

This repository contains a bulk scanning tool for detecting OpenSSH vulnerabilities, including CVE-2024-6387 and 19 other CVEs. It performs version checks against target SSH servers to identify potential vulnerabilities without attempting exploitation.

Classification

Scanner 100%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: OpenSSH (versions 2.3.0 to 9.7)

No auth needed

Prerequisites: Network access to target SSH servers · Python environment with 'packaging' library

MITRE ATT&CK