Main Vulnerability Database Exploits ID:3746 - Exploit for CRLF injection in Dropbear - CVE-2016-3116

ID:3746 - Exploit for CRLF injection in Dropbear - CVE-2016-3116

Published: August 5, 2020

Vulnerability identifier: #VU33987

Vulnerability risk: Medium

CVE-ID: CVE-2016-3116

CWE-ID: CWE-93

Exploitation vector: Remote access

Vulnerable software:
Dropbear

Link to public exploit:

https://www.exploit-db.com/exploits/40119/

Vulnerability description

The vulnerability allows a remote user to bypass implemented security restrictions.

The vulnerability exists due to improper input validation when processing CRLF characters. A remote authenticated user bypass intended shell-command restrictions via crafted X11 forwarding data.

Remediation

Install updates from vendor's website.

ID:3746 - Exploit for CRLF injection in Dropbear - CVE-2016-3116

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human