CVE-2025-26466

This repository provides a Nuclei template for detecting vulnerable OpenSSH versions (9.5p1 to 9.9p1) affected by CVE-2025-26466. It is a passive scanner that matches SSH banner strings to identify potentially vulnerable hosts.

This repository provides a mitigation script for OpenSSH vulnerabilities CVE-2025-26465 and CVE-2025-26466, focusing on disabling VerifyHostKeyDNS and adjusting MaxStartups to prevent DoS attacks. It includes a detailed README and a bash script for automated mitigation.

This repository contains a functional proof-of-concept exploit for CVE-2025-26466, which targets an OpenSSH vulnerability. The exploit initiates a TCP connection, sends crafted SSH packets, and loops sending ping requests without completing key exchange, leading to a denial-of-service condition due to unbounded pong responses.

This is a Metasploit module for CVE-2025-26466, which exploits a DoS vulnerability in OpenSSH (versions 9.5p1 to 9.9p1) by sending repeated SSH2_MSG_PING packets to exhaust server resources. The module includes options to control the number of packets and check for server responses.