CVE-2006-0883

OpenSSH on FreeBSD 5.3 and 5.4, when used with OpenPAM, does not properly handle when a forked child process terminates during PAM authentication, which allows remote attackers to cause a denial of service (client connection refusal) by connecting multiple times to the SSH server, waiting for the password prompt, then disconnecting.

Published : 2006-03-07 02:02 Updated : 2017-07-20 01:30

5.0
CVSS Score More info
Score 5.0 / 10
5.0
Vendor Product Version URI
Freebsd Freebsd 5.3 cpe:/o:freebsd:freebsd:5.3
Freebsd Freebsd 5.3 cpe:/o:freebsd:freebsd:5.3:releng
Freebsd Freebsd 5.4 cpe:/o:freebsd:freebsd:5.4:releng
Openbsd Openssh 3.8.1p1 cpe:/a:openbsd:openssh:3.8.1p1
Freebsd Freebsd 5.4 cpe:/o:freebsd:freebsd:5.4:release
Freebsd Freebsd 5.4 cpe:/o:freebsd:freebsd:5.4:stable
Freebsd Freebsd 5.3 cpe:/o:freebsd:freebsd:5.3:release
Freebsd Freebsd 5.3 cpe:/o:freebsd:freebsd:5.3:stable
Freebsd Freebsd 5.4 cpe:/o:freebsd:freebsd:5.4:pre-release
  1. Freebsd (1) Search CVE
    1. Freebsd (2) Search CVE
      1. 5.3
      2. 5.4
  2. Openbsd (1) Search CVE
    1. Openssh (1) Search CVE
      1. 3.8.1p1

CWE

ID Name Description Links
CWE-399 Resource Management Errors Weaknesses in this category are related to improper management of system resources. CVE

History of changes

Date Event
2017-07-20 05:37
2006-03-07 02:02

New CVE