vendor:
Sysax Multi Server
by:
Craig Freyman
9
CVSS
CRITICAL
The exploit allows remote attackers to execute arbitrary code via a long SSH username, which triggers a buffer overflow in the username field of the SSH handshake process.
119
CWE
Product Name: Sysax Multi Server
Affected Version From: <= 5.53
Affected Version To: 5.53
Patch Exists: YES
Related CWE: CVE-2012-1000
CPE: a:sysax:sysax_multi_server:5.53
Platforms Tested: Windows XP SP3 32-bit, Windows 2003 Server SP2 (No DEP)
Sysax <= 5.53 SSH Username BoF Pre Auth RCE (Egghunter)
The exploit allows remote attackers to execute arbitrary code via a long SSH username, which triggers a buffer overflow in the username field of the SSH handshake process.
Mitigation:
Upgrade to Sysax version 5.55 or later.