CVE-2016-7406

CRITICAL

Dropbear SSH < 2016.73 - Remote Code Execution via Format String Specifiers

Title source: llm
STIX 2.1

Description

Format string vulnerability in Dropbear SSH before 2016.74 allows remote attackers to execute arbitrary code via format string specifiers in the (1) username or (2) host argument.

References (6)

Core 6
Core References
Patch, Third Party Advisory, VDB Entry vendor-advisory x_refsource_gentoo
https://security.gentoo.org/glsa/201702-23
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/92974
Mailing List, Patch, Third Party Advisory mailing-list x_refsource_mlist
http://www.openwall.com/lists/oss-security/2016/09/15/2
Issue Tracking x_refsource_confirm
https://bugzilla.redhat.com/show_bug.cgi?id=1376353
Issue Tracking, Patch, Third Party Advisory x_refsource_confirm
https://secure.ucc.asn.au/hg/dropbear/rev/b66a483f3dcb

Scores

CVSS v3 9.8
EPSS 0.1049
EPSS Percentile 95.2%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-20
Status published
Products (1)
dropbear_ssh_project/dropbear_ssh < 2016.73
Published Mar 03, 2017
Tracked Since Feb 18, 2026