Vulnerabilities > CVE-2007-1099 - Unspecified vulnerability in Dropbear SSH Project Dropbear SSH

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

dropbear-ssh-project

NVD

Published: 2007-02-26

Updated: 2018-10-30

Summary

dbclient in Dropbear SSH client before 0.49 does not sufficiently warn the user when it detects a hostkey mismatch, which might allow remote attackers to conduct man-in-the-middle attacks.

Vulnerable Configurations

Part	Description	Count
Application	Dropbear_Ssh_Project Dropbear SSH Project Dropbear SSH 0.28 Dropbear SSH Project Dropbear SSH 0.29 Dropbear SSH Project Dropbear SSH 0.30 Dropbear SSH Project Dropbear SSH 0.31 Dropbear SSH Project Dropbear SSH 0.32 Dropbear SSH Project Dropbear SSH 0.33 Dropbear SSH Project Dropbear SSH 0.34 Dropbear SSH Project Dropbear SSH 0.35 Dropbear SSH Project Dropbear SSH 0.36 Dropbear SSH Project Dropbear SSH 0.37 Dropbear SSH Project Dropbear SSH 0.38 Dropbear SSH Project Dropbear SSH 0.39 Dropbear SSH Project Dropbear SSH 0.40 Dropbear SSH Project Dropbear SSH 0.41 Dropbear SSH Project Dropbear SSH 0.42 Dropbear SSH Project Dropbear SSH 0.43 Dropbear SSH Project Dropbear SSH 0.44 Dropbear SSH Project Dropbear SSH 0.45 Dropbear SSH Project Dropbear SSH 0.46 Dropbear SSH Project Dropbear SSH 0.47 Dropbear SSH Project Dropbear SSH 0.48 Dropbear SSH Project Dropbear SSH 0.48.1	26

Summary

Vulnerable Configurations

References