vendor:
ProSSHD
by:
Alexey Sintsov
7.5
CVSS
HIGH
remote post-auth exploit
CWE
Product Name: ProSSHD
Affected Version From: 1.2
Affected Version To: 1.2
Patch Exists: NO
Related CWE:
CPE: a:prosshd:prosshd:1.2
Platforms Tested: Windows XP SP3 / Windows 7
2010
ProSSHD 1.2 remote post-auth exploit (w/ASLR and DEP bypass)
This exploit allows remote attackers to bypass ASLR and DEP protections in ProSSHD 1.2, leading to unauthorized access.
Mitigation:
Upgrade to a patched version of ProSSHD.