cve/CVE-2016-8858.md at 080c77ded0654f051cb1bc3976c3cd169cb797da

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-06 02:31:38 +00:00

0xMarcio 49bdc782b3 Update Sun May 26 14:27:04 CEST 2024

2024-05-26 14:27:05 +02:00

Description

** DISPUTED ** The kex_input_kexinit function in kex.c in OpenSSH 6.x and 7.x through 7.3 allows remote attackers to cause a denial of service (memory consumption) by sending many duplicate KEXINIT requests. NOTE: a third party reports that "OpenSSH upstream does not consider this as a security issue."

POC

Reference

No PoCs from references.

Github

https://github.com/bioly230/THM_Skynet
https://github.com/dag-erling/kexkill
https://github.com/retr0-13/cveScannerV2
https://github.com/scmanjarrez/CVEScannerV2
https://github.com/vshaliii/Basic-Pentesting-2-Vulnhub-Walkthrough

951 B Raw Blame History

CVE-2016-8858

Description

POC

Reference

Github

951 B

Raw Blame History