CVE Vulnerabilities

CVE-2007-1654

Published: Mar 24, 2007 | Modified: Jul 29, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
9.3 HIGH
AV:N/AC:M/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

Buffer overflow in the Ne7sshSftp::addOpenHandle function in ne7ssh_sftp.cpp in NetSieben SSH Library (ne7ssh) before 1.2.1 allows user-assisted remote SFTP servers to cause a denial of service (crash) or possibly execute arbitrary code via multiple file transfers, related to multiple open file handles in SFTP (1) put and (2) get operations.

Affected Software

Name Vendor Start Version End Version
Netsieben_ssh_library Netsieben 1.1 1.1
Netsieben_ssh_library Netsieben 1.2.0 1.2.0
Netsieben_ssh_library Netsieben 1.03 1.03
Netsieben_ssh_library Netsieben 1.1.6 1.1.6
Netsieben_ssh_library Netsieben 1.1.5 1.1.5

References