| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <20130717115701.GN26243@suse.de> Date: Wed, 17 Jul 2013 13:57:01 +0200 From: Marcus Meissner <meissner@...e.de> To: full-disclosure@...ts.grok.org.uk Subject: Pre-Auth remote crash in NanoSSH on Avaya Ethernet Routing switch (ERS) 5698 and 5698-PoE Hi, Various openssh 6.2p1 users including our administrators stumbled over this nice bug in the "nanossh server" during pre authentication phase within nanossh ( https://www.mocana.com/for-device-manufacturers/nanossh/ ) Bug at openssh bugzilla: https://bugzilla.mindrot.org/show_bug.cgi?id=2116 http://www.gossamer-threads.com/lists/openssh/bugs/55880 Basically if the HMAC list is unexpected long (>1) the remote nanossh daemon will crash. Unclear if code execution, but well, I would not bet against it. Also unclear if more than the listed Nortel switches are affected, or all nanossh deployers, but probably yes. Ciao, Marcus _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists