Security flaw in libssh leaves thousands of servers at risk of hijacking

guest · Oct 17, 2018

Security flaw in libssh leaves thousands of servers at risk of hijacking
October 17, 2018
https://www.zdnet.com/article/secur...es-thousands-of-servers-at-risk-of-hijacking/

A vulnerability in libssh, a popular library for supporting the Secure Shell (SSH) authentication protocol, leaves thousands, if not more, of enterprise servers open to attacks.
The vulnerability allows an attacker to bypass authentication procedures and gain access to a server with an SSH connection enabled without having to enter the password.

The vulnerability, which is tracked as CVE-2018-10933, was introduced in libssh 0.6.0, released in January 2014. The libssh team released versions 0.8.4 and 0.7.6 yesterday to address this bug.

One of the largest sites that supports libssh is GitHub, but the site's security team has already come forward to say they are not affected. [...] the company said on Twitter.
Click to expand...

guest · Oct 19, 2018

F5: Don't panic but anyone can log into our load balancers, thanks to libssh's credentials-optional security goof
October 19, 2018
https://www.theregister.co.uk/2018/10/19/f5_vulnerable_libssh/

Network box maker F5 says it has shipped load balancers that are vulnerable to the libssh authentication-bypass bug – meaning anyone who can reach the devices over the network or internet can potentially dive in simply by asking nicely.

The vulnerability allows an attacker to trick a server into letting her gain access without any valid credentials. When the server expects a SSH2_MSG_USERAUTH_REQUEST message, the hacker sends SSH2_MSG_USERAUTH_SUCCESS, the server swallows that, and it lets the miscreant log in, with no further questions asked.

F5 has run its eyes over its portfolio, and in announcing the conclusion of its probe, here, said only a handful of boxes in its Big-IP Advanced Firewall Manager range are vulnerable.

While we're on the topic of libssh, MacCárthaigh's whole thread (starting here) is an interesting digest of how the Amazon cloud juggernaut avoids similar issues.
Click to expand...

guest · Oct 23, 2018

Libssh CVE-2018-10933 Scanners & Exploits Released - Apply Updates Now
October 22, 2018
https://www.bleepingcomputer.com/ne...ners-and-exploits-released-apply-updates-now/

While this vulnerability has been fixed in libssh versions 0.7.6 and 0.8.4, researchers have released scanners and scripts that make it simple to exploit the vulnerability and execute commands remotely for vulnerable versions.

Below we have listed the known advisories related to this vulnerability. This information will be updated as more advisories are released. [...]
Click to expand...

Log in or Sign up

Security flaw in libssh leaves thousands of servers at risk of hijacking

guest Guest

guest Guest

guest Guest

Log in or Sign up

Security flaw in libssh leaves thousands of servers at risk of hijacking

guest Guest

guest Guest

guest Guest

Useful Searches