Vulnerabilities (CVE)

Filtered by vendor Georgia Softworks Subscribe
Filtered by product Ssh2 Server
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2008-0097 1 Georgia Softworks 1 Ssh2 Server 2024-11-21 7.5 HIGH N/A
Format string vulnerability in the log function in Georgia SoftWorks SSH2 Server (GSW_SSHD) 7.01.0003 and earlier allows remote attackers to execute arbitrary code via format string specifiers in the username field, as demonstrated by a certain LoginPassword message.
CVE-2008-0096 1 Georgia Softworks 1 Ssh2 Server 2024-11-21 7.5 HIGH N/A
Multiple buffer overflows in Georgia SoftWorks SSH2 Server (GSW_SSHD) 7.01.0003 and earlier allow remote attackers to execute arbitrary code via a (1) a long username, which triggers an overflow in the log function; or (2) a long password.