Input validation error in libssh



| Updated: 2020-08-04
Risk Medium
Patch available YES
Number of vulnerabilities 1
CVE-ID CVE-2012-4562
CWE-ID CWE-20
Exploitation vector Network
Public exploit N/A
Vulnerable software
 libssh
Universal components / Libraries / Libraries used by multiple products

Vendor libssh

Security Bulletin

This security bulletin contains one medium risk vulnerability.

1) Input validation error

EUVDB-ID: #VU33915

Risk: Medium

CVSSv4.0: 2.7 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2012-4562

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a remote non-authenticated attacker to read and manipulate data.

Multiple integer overflows in libssh before 0.5.3 allow remote attackers to cause a denial of service (infinite loop or crash) and possibly execute arbitrary code via unspecified vectors, which triggers a buffer overflow, infinite loop, or possibly some other unspecified vulnerabilities.

Mitigation

Install update from vendor's website.

Vulnerable software versions

libssh: 0.5.0 - 0.5.2

CPE2.3 External links

https://lists.fedoraproject.org/pipermail/package-announce/2012-November/093313.html
https://lists.fedoraproject.org/pipermail/package-announce/2012-November/093474.html
https://lists.opensuse.org/opensuse-security-announce/2012-11/msg00015.html
https://lists.opensuse.org/opensuse-security-announce/2012-12/msg00002.html
https://lists.opensuse.org/opensuse-updates/2012-12/msg00016.html
https://lists.opensuse.org/opensuse-updates/2013-01/msg00021.html
https://www.debian.org/security/2012/dsa-2577
https://www.libssh.org/2012/11/20/libssh-0-5-3-security-release/
https://www.mandriva.com/security/advisories?name=MDVSA-2012:175
https://www.openwall.com/lists/oss-security/2012/11/20/3
https://www.securityfocus.com/bid/56604
https://www.ubuntu.com/usn/USN-1640-1
https://bugzilla.redhat.com/show_bug.cgi?id=871620
https://exchange.xforce.ibmcloud.com/vulnerabilities/80221


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.



###SIDEBAR###