NetDefend IPS
IPS Advisories
NetDefend
Anti-Virus
Anti-Virus Advisories
NetDefend Web Content Filtering
NetDefend IP Reputation
NetDefend Update Center
IPS History
Apr 23, 2024
Apr 18, 2024
Apr 11, 2024
Apr 10, 2024
Apr 04, 2024
Anti-Virus History
Feb 12, 2022
Jan 06, 2022
Oct 23, 2021
Aug 29, 2021
Aug 23, 2021







Home > NetDefend Live > NetDefend IPS Service
NetDefend IPS Service
Print
Advisory ID
48279
Name
Exploit.Remote.Code.Execution.OpenSSH.CVE-2023-25136.A
IPS Signature
Advanced IPS Signature
IPS Group
IPS / SSH / OPENSSH
Issued
Oct 13, 2023
Description
OpenSSH server (sshd) 9.1 introduced a double-free vulnerability during options.kex_algorithms handling. This is fixed in OpenSSH 9.2. The double free can be leveraged, by an unauthenticated remote attacker in the default configuration, to jump to any location in the sshd address space. One third-party report states "remote code execution is theoretically possible."
Enter your details in the box below to receive an email each time we post a new issue of our newsletter.







Apr 24, 2024