CVE-2020-9283
HIGHgolang.org/x/crypto/ssh < 0.0.0-20200220183623-bac4c82f6975 - Denial of Service via Cryptographic Signature Verification
Title source: llmExploitation Summary
EIP tracks 2 public exploits for CVE-2020-9283. PoCs published by Mark Adams, brompwnie.
AI-analyzed exploit summary This PoC exploits a denial-of-service vulnerability in Go SSH servers by sending a malformed authentication request with an invalid SSH key and empty signature, causing a panic on the remote server.
Description
golang.org/x/crypto before v0.0.0-20200220183623-bac4c82f6975 for Go allows a panic during signature verification in the golang.org/x/crypto/ssh package. A client can attack an SSH server that accepts public keys. Also, a server can attack any SSH client.
Exploits (2)
This PoC exploits a denial-of-service vulnerability in Go SSH servers by sending a malformed authentication request with an invalid SSH key and empty signature, causing a panic on the remote server.
This repository contains a functional Go-based exploit for CVE-2020-9283, which triggers a panic in Go SSH servers by sending a malformed Ed25519 public key, leading to a Denial of Service (DoS). The exploit modifies the Go crypto/ssh library to include a hardcoded payload that causes the panic.
References (6)
Scores
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H