#VU33915 Input validation error in libssh - CVE-2012-4562

Cybersecurity Help s.r.o.

Published: 2012-12-01 | Updated: 2020-08-04

Vulnerability identifier: #VU33915

Vulnerability risk: Medium

CVSSv4.0: 2.7 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2012-4562

CWE-ID: CWE-20

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
libssh
Universal components / Libraries / Libraries used by multiple products

Vendor: libssh

Description

The vulnerability allows a remote non-authenticated attacker to read and manipulate data.

Multiple integer overflows in libssh before 0.5.3 allow remote attackers to cause a denial of service (infinite loop or crash) and possibly execute arbitrary code via unspecified vectors, which triggers a buffer overflow, infinite loop, or possibly some other unspecified vulnerabilities.

Mitigation
Install update from vendor's website.

Vulnerable software versions

libssh: 0.5.0 - 0.5.2

External links
https://lists.fedoraproject.org/pipermail/package-announce/2012-November/093313.html
https://lists.fedoraproject.org/pipermail/package-announce/2012-November/093474.html
https://lists.opensuse.org/opensuse-security-announce/2012-11/msg00015.html
https://lists.opensuse.org/opensuse-security-announce/2012-12/msg00002.html
https://lists.opensuse.org/opensuse-updates/2012-12/msg00016.html
https://lists.opensuse.org/opensuse-updates/2013-01/msg00021.html
https://www.debian.org/security/2012/dsa-2577
https://www.libssh.org/2012/11/20/libssh-0-5-3-security-release/
https://www.mandriva.com/security/advisories?name=MDVSA-2012:175
https://www.openwall.com/lists/oss-security/2012/11/20/3
https://www.securityfocus.com/bid/56604
https://www.ubuntu.com/usn/USN-1640-1
https://bugzilla.redhat.com/show_bug.cgi?id=871620
https://exchange.xforce.ibmcloud.com/vulnerabilities/80221

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Gentoo update for libssh

Input validation error in libssh (Alpine package)

Slackware Linux update for libssh

Input validation error in libssh