Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
DenyHosts 2.6 does not properly parse sshd log files, which allows remote attackers to add arbitrary hosts to the /etc/hosts.deny file and cause a denial of service by adding arbitrary IP addresses to the sshd log file, as demonstrated by logging in via ssh with a client protocol version identification containing an IP address string, a different vector than CVE-2006-6301.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
DenyHosts Client Protocol Version Identification 远程拒绝服务漏洞
Vulnerability Description
DenyHosts 2.6没有适当分析sshd log文件,这会允许远程攻击者通过向sshd登录日志文件添加任意IP地址,例如通过登录,可以借助具有一个客户协议版本身份且办好一个IP地址字符串的ssh,向/etc/hosts.deny文件添加任意主机并造成拒绝服务。该漏洞不同于CVE-2006-6301。
CVSS Information
N/A
Vulnerability Type
N/A