packet.c in ssh in OpenSSH allows remote attackers to cause a denial of service (crash) by sending an invalid protocol sequence with USERAUTH_SUCCESS before NEWKEYS, which causes newkeys[mode] to be NULL.
References
Configurations
Information
Published : 2006-09-28 17:07
Updated : 2018-10-17 14:40
NVD link : CVE-2006-4925
Mitre link : CVE-2006-4925
JSON object : View
CWE
Products Affected
openbsd
- openssh