Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
DenyHosts 2.6 processes OpenSSH sshd "not listed in AllowUsers" log messages with an incorrect regular expression that does not match an IP address, which might allow remote attackers to avoid detection and blocking when making invalid login attempts with a username not present in AllowUsers, as demonstrated by the root username, a different vulnerability than CVE-2007-4323.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
DenyHosts OpenSSH sshd中配置错误漏洞
Vulnerability Description
DenyHosts 2.6版本处理OpenSSH sshd中具有一个错误的常规表达式并且与IP地址不相匹配的"没在AllowUsers中列出" 的log 信息,这会允许远程攻击者当制造AllowUsers中的一个无效的用户名登录,如b根用户名,避开检测和阻挡。
CVSS Information
N/A
Vulnerability Type
N/A