ID:4345 - Exploit for Improper Authentication in freeSSHd - CVE-2012-6066

CSH
CYBERSECURITY HELP
Sign In REGISTER
 
Main Vulnerability Database Exploits ID:4345 - Exploit for Improper Authentication in freeSSHd - CVE-2012-6066

ID:4345 - Exploit for Improper Authentication in freeSSHd - CVE-2012-6066

Published: August 11, 2020


Vulnerability identifier: #VU43271
Vulnerability risk: High
CVE-ID: CVE-2012-6066
CWE-ID: CWE-287
Exploitation vector: Remote access
Vulnerable software:
freeSSHd

Link to public exploit:


Vulnerability description

The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.

freeSSHd.exe in freeSSHd through 1.2.6 allows remote attackers to bypass authentication via a crafted session, as demonstrated by an OpenSSH client with modified versions of ssh.c and sshconnect2.c.


Remediation

Install update from vendor's website.