Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
fail2ban 0.8 and earlier does not properly parse sshd log files, which allows remote attackers to add arbitrary hosts to the /etc/hosts.deny file and cause a denial of service by adding arbitrary IP addresses to the sshd log file, as demonstrated by logging in via ssh with a client protocol version identification containing an IP address string, a different vector than CVE-2006-6302.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
fail2ban sshd文件拒绝服务漏洞
Vulnerability Description
fail2ban 0.8版本及其早期版本没有适当地分析sshd log文件,这会允许远程攻击者通过向sshd登录文件添加任意IP地址,以向/etc/hosts.deny文件添加任意主机信息,并通过添加任意IP地址信息至sshd文件造成拒绝服务,例如可以借助具有一个包含一个IP地址字符串的客户端协议版本身份ssh。该漏洞不同于CVE-2006-6302。
CVSS Information
N/A
Vulnerability Type
N/A