Back to search
CVE-2006-0353
Published: Jan 22, 2006
Modified: Aug 7, 2024
PUBLISHED
Description
unix_random.c in lshd for lsh 2.0.1 leaks file descriptors related to the randomness generator, which allows local users to cause a denial of service by truncating the seed file, which prevents the server from starting, or obtain sensitive seed information that could be used to crack keys.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
16357
vdb-entry
x_refsource_BID
[lsh-bugs] SECURITY: lshd leaks fd:s to user shells
mailing-list
x_refsource_MLIST
18623
third-party-advisory
x_refsource_SECUNIA
22695
vdb-entry
x_refsource_OSVDB
lsh-file-descriptor-leak(24263)
vdb-entry
x_refsource_XF
DSA-956
vendor-advisory
x_refsource_DEBIAN
ADV-2006-0301
vdb-entry
x_refsource_VUPEN
18564
third-party-advisory
x_refsource_SECUNIA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now