Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
fail2ban 0.7.4 and earlier does not properly parse sshd log files, which allows remote attackers to add arbitrary hosts to the /etc/hosts.deny file and cause a denial of service by adding arbitrary IP addresses to the sshd log file, as demonstrated by logging in via ssh with a login name containing certain strings with an IP address.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Fail2Ban 'hosts.deny'文件远程拒绝服务漏洞
Vulnerability Description
fail2ban 0.7.4及更早版本未正确解析sshd日志文件,远程攻击者可通过添加任意IP地址到sshd日志文件,如通过使用一个含有IP地址的特定字符串的登录名登录到ssh,从而添加任意主机到/etc/hosts.deny文件并发起拒绝服务攻击。
CVSS Information
N/A
Vulnerability Type
N/A