Vulnerabilities > Georgia Softworks
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2008-01-08 | CVE-2008-0097 | Improper Input Validation vulnerability in Georgia Softworks Ssh2 Server Format string vulnerability in the log function in Georgia SoftWorks SSH2 Server (GSW_SSHD) 7.01.0003 and earlier allows remote attackers to execute arbitrary code via format string specifiers in the username field, as demonstrated by a certain LoginPassword message. | 7.5 |
2008-01-08 | CVE-2008-0096 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Georgia Softworks Ssh2 Server Multiple buffer overflows in Georgia SoftWorks SSH2 Server (GSW_SSHD) 7.01.0003 and earlier allow remote attackers to execute arbitrary code via a (1) a long username, which triggers an overflow in the log function; or (2) a long password. | 7.5 |