The default configuration of OpenSSH through 6.1 enforces a fixed time limit between establishing a TCP connection and completing a login, which makes it easier for remote attackers to cause a denial of service (connection-slot exhaustion) by periodically making many new TCP connections.
References
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2013-03-07 20:55
Updated : 2024-02-28 12:00
NVD link : CVE-2010-5107
Mitre link : CVE-2010-5107
CVE.ORG link : CVE-2010-5107
JSON object : View
Products Affected
openbsd
- openssh
CWE