Back to search
CVE-2013-10065
Published: Aug 5, 2025
Modified: Nov 21, 2025
PUBLISHED
Description
A denial-of-service vulnerability exists in Sysax Multi-Server version 6.10 via its SSH daemon. A specially crafted SSH key exchange packet can trigger a crash in the service, resulting in loss of availability. The flaw is triggered during the handling of malformed key exchange data, including a non-standard byte (\x28) in place of the expected SSH protocol delimiter.
| Vendor | Product | Versions |
|---|---|---|
Sysax Software | Multi-Server | affected 6.10 |
Weaknesses (CWE)
References
https://www.mattandreko.com/2013/04/08/sysax-multi-server-6.10-ssh-dos/
technical-description
exploit
https://www.sysax.com/
product
https://www.vulncheck.com/advisories/sysax-multi-server-sshd-key-exchange-dos
third-party-advisory
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now