CVE-2013-4175

MEDIUM

MySecureShell 1.31 - Local Denial of Service via Uncontrolled Resource Consumption

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2013-4175. PoCs published by hartwork.

AI-analyzed exploit summary This PoC exploits a local denial-of-service (DoS) vulnerability in MySecureShell by manipulating shared memory segments to block client slots. It interacts with the shared memory interface used by MySecureShell to mark slots as occupied, preventing legitimate client connections.

Description

MySecureShell 1.31 has a Local Denial of Service Vulnerability

Exploits (1)

nomisec WORKING POC

by hartwork · poc

https://github.com/hartwork/mysecureshell-issues

View Code ZIP pw:eip

This PoC exploits a local denial-of-service (DoS) vulnerability in MySecureShell by manipulating shared memory segments to block client slots. It interacts with the shared memory interface used by MySecureShell to mark slots as occupied, preventing legitimate client connections.

Classification

Working Poc 100%

Attack Type

Dos

Complexity

Moderate

Reliability

Reliable

Target: MySecureShell 1.31

No auth needed

Prerequisites: Local access to the system running MySecureShell · Shared memory segment accessibility

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2

Core References

Third Party Advisory, VDB Entry x_refsource_misc

http://www.securityfocus.com/bid/61410

Exploit, Mailing List, Third Party Advisory x_refsource_misc

http://www.openwall.com/lists/oss-security/2013/07/27/5

Scores

CVSS v3 5.5

EPSS 0.0044

EPSS Percentile 35.2%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

CWE

CWE-400

Status published

Products (1)

mysecureshell_project/mysecureshell 1.31

Published Jan 23, 2020

Tracked Since Feb 18, 2026