SSH: Resume Packet Write Wait Buffer Overflow
This signature detects attempts to exploit a known vulnerability in OpenSSH . A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the targeted daemon.
Extended Description
The (1) roaming_read and (2) roaming_write functions in roaming_common.c in the client in OpenSSH 5.x, 6.x, and 7.x before 7.1p2, when certain proxy and forward options are enabled, do not properly maintain connection file descriptors, which allows remote servers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact by requesting many forwardings.
Affected Products
Apple mac_os_x
Short Name
SSH:PACKET-WRITE-WAIT-BO
Severity
Major
Recommended
True
Recommended Action
Drop
Category
SSH
Keywords
Buffer CVE-2016-0777 CVE-2016-0778 Overflow Packet Resume Wait Write
Release Date
01/26/2016
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3590
False Positive
Unknown
Vendors
Oracle
Sophos
Openbsd
Apple
Hp
CVSS Score
4.6
4.0