CVE-2024-0723

MEDIUM

freeSSHd 1.0.9 - Denial of Service

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2024-0723. PoCs published by Fernando Mengali.

AI-analyzed exploit summary This exploit targets a Denial of Service (DoS) vulnerability in freeSSHd 1.0.9 by sending a malformed payload to crash the service. The PoC uses a crafted buffer and payload to trigger the vulnerability, leading to a crash.

Description

A vulnerability was found in freeSSHd 1.0.9 on Windows. It has been classified as problematic. This affects an unknown part. The manipulation leads to denial of service. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-251547.

Exploits (1)

exploitdb WORKING POC
by Fernando Mengali · textremotewindows
https://www.exploit-db.com/exploits/52342

This exploit targets a Denial of Service (DoS) vulnerability in freeSSHd 1.0.9 by sending a malformed payload to crash the service. The PoC uses a crafted buffer and payload to trigger the vulnerability, leading to a crash.

Classification
Working Poc 95%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: freeSSHd 1.0.9
No auth needed
Prerequisites: Network access to the target service · Target running freeSSHd 1.0.9
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Permissions Required vdb-entry
https://vuldb.com/?id.251547
Permissions Required signature permissions-required
https://vuldb.com/?ctiid.251547

Scores

CVSS v3 5.3
EPSS 0.0128
EPSS Percentile 80.1%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

CISA SSVC

Vulnrichment
Exploitation poc
Automatable yes
Technical Impact partial

Details

CWE
CWE-404
Status published
Products (1)
freesshd/freesshd 1.0.9
Published Jan 19, 2024
Tracked Since Feb 18, 2026