[OpenWrt-Tickets] [OpenWrt] #16871: Dropbear SSH Server < 2013.59 Multiple Vulnerabilities

Mon, 23 Jun 2014 10:04:18 -0700 

#16871: Dropbear SSH Server < 2013.59 Multiple Vulnerabilities
-------------------------------------+-------------------------------------
 Reporter:  tomasz.figa@…            |      Owner:  developers
     Type:  defect                   |     Status:  new
 Priority:  high                     |  Milestone:  Attitude Adjustment
Component:  packages                 |  12.09.1
 Keywords:  dropbear nessus update   |    Version:  Attitude Adjustment
  CVE-2013-4421 CVE-2013-4434        |  12.09
-------------------------------------+-------------------------------------
 Hi,

 I've been checking my home server for known vulnerabilities using Nessus,
 which has certain services accessible through ports forwarded on my router
 running OpenWRT Attitude Adjustment 12.09.1 and stumbled upon a security
 issue related to ancient Dropbear version present in Attitude Adjustment.

 I would appreciate providing updated version of aforementioned package, so
 that the problem can be eliminated.

 Best regards,
 Tomasz

 -->8 - Nessus report follows - 8<--

 70545 (1) - Dropbear SSH Server < 2013.59 Multiple Vulnerabilities

 Synopsis
 The remote SSH service is affected by multiple vulnerabilities.
 Description
 According to its self-reported banner, the version of Dropbear SSH running
 on this port is earlier than 2013.59. As
 such, it is potentially affected by multiple vulnerabilities :
 - A denial of service vulnerability caused by the way the
 'buf_decompress()' function handles compressed files.
 (CVE-2013-4421)
 - User-enumeration is possible due to a timing error when authenticating
 users. (CVE-2013-4434)

 See Also
 https://matt.ucc.asn.au/dropbear/CHANGES
 https://secure.ucc.asn.au/hg/dropbear/rev/0bf76f54de6f
 https://secure.ucc.asn.au/hg/dropbear/rev/a625f9e135a4

 Solution
 Upgrade to the Dropbear SSH 2013.59 or later.

 Risk Factor
 Medium

 CVSS Base Score
 5.0 (CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P)
 CVSS Temporal Score
 4.3 (CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P)

 References
 BID
  62958
 BID
  62993
 CVE
  CVE-2013-4421
 CVE
  CVE-2013-4434
 XREF
  OSVDB:98303
 XREF
  OSVDB:98365

 Plugin Information:
 Publication date: 2013/10/22, Modification date: 2014/05/29

--
Ticket URL: <https://dev.openwrt.org/ticket/16871>
OpenWrt <http://openwrt.org>
Opensource Wireless Router Technology
_______________________________________________
openwrt-tickets mailing list
[email protected]
https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-tickets

Reply via email to