SSH: Multiple SSH2 Clients and Servers Buffer Overflow Denial of Service
This signature detects attempts to exploit a known vulnerability against multiple SSH2 servers and clients. A successful attack can result in a denial-of-service condition.
Extended Description
Multiple SSH2 servers and clients do not properly handle large packets or large fields, which may allow remote attackers to cause a denial of service or possibly execute arbitrary code via buffer overflow attacks, as demonstrated by the SSHredder SSH protocol test suite.
References
CVE: CVE-2002-1359
Short Name
SSH:OVERFLOW:MULT-SSH2-BO-DOS
Severity
Critical
Recommended
False
Recommended Action
None
Category
SSH
Keywords
Buffer CVE-2002-1359 Clients Denial Multiple Overflow SSH2 Servers Service and of
Release Date
03/12/2020
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3761
False Positive
Unknown
CVSS Score
10.0