OpenSSH < 2.1.1p3 Format String Privilege Escalation

critical Nessus Plugin ID 17839

Synopsis

The remote OpenSSH server has a format string vulnerability.

Description

According to the banner, a version of OpenSSH earlier than 2.1.1p3 is running on the remote host. As such, it is reportedly affected by a format string vulnerability.

Solution

Upgrade to OpenSSH 2.1.1p3 / 2.3.0 or later.

See Also

http://www.nessus.org/u?e4cd6ac9

http://www.nessus.org/u?95e39748

Plugin Details

Severity: Critical

ID: 17839

File Name: openssh_211p3.nasl

Version: 1.4

Type: remote

Family: Misc.

Published: 1/18/2012

Updated: 3/27/2024

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 5.9

CVSS v2

Risk Factor: Critical

Base Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Information

CPE: cpe:/a:openbsd:openssh

Required KB Items: installed_sw/OpenSSH

Patch Publication Date: 7/11/2000

Vulnerability Publication Date: 10/4/2000

Reference Information

CVE: CVE-2000-0999