Juniper Networks
Solutions
Products & Services
Company
Partners
Support
Education

Signature Detail

Security Intelligence Center
Signatures
Print

This site is deprecated. Please CLICK HERE for latest updates

Short Name

 SSH:OPENSSH:SFTP-DOS

Severity

 Minor

Recommended

 Yes

Recommended Action

 Drop

Category

 SSH

Keywords

 OpenSSH SFTP Server Denial of Service

Release Date

 2018/02/19

Update Number

 3038

Supported Platforms

 idp-4.0+, isg-3.4+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+

SSH: OpenSSH SFTP Server Denial of Service


This signature detects attempts to exploit a known vulnerability against OpenSSH, SFTP server. A successful attack can result in a denial-of-service condition.

Extended Description

The process_open function in sftp-server.c in OpenSSH before 7.6 does not properly prevent write operations in readonly mode, which allows attackers to create zero-length files.

Affected Products

  • Openbsd openssh 1.2
  • Openbsd openssh 1.2.1
  • Openbsd openssh 1.2.2
  • Openbsd openssh 1.2.27
  • Openbsd openssh 1.2.3
  • Openbsd openssh 1.3
  • Openbsd openssh 1.5
  • Openbsd openssh 1.5.7
  • Openbsd openssh 1.5.8
  • Openbsd openssh 2
  • Openbsd openssh 2.1
  • Openbsd openssh 2.1.1
  • Openbsd openssh 2.2
  • Openbsd openssh 2.3
  • Openbsd openssh 2.3.1
  • Openbsd openssh 2.5
  • Openbsd openssh 2.5.1
  • Openbsd openssh 2.5.2
  • Openbsd openssh 2.9
  • Openbsd openssh 2.9.9
  • Openbsd openssh 2.9.9p2
  • Openbsd openssh 2.9p1
  • Openbsd openssh 2.9p2
  • Openbsd openssh 3.0
  • Openbsd openssh 3.0.1
  • Openbsd openssh 3.0.1p1
  • Openbsd openssh 3.0.2
  • Openbsd openssh 3.0.2p1
  • Openbsd openssh 3.0p1
  • Openbsd openssh 3.1
  • Openbsd openssh 3.1p1
  • Openbsd openssh 3.2
  • Openbsd openssh 3.2.2
  • Openbsd openssh 3.2.2p1
  • Openbsd openssh 3.2.3p1
  • Openbsd openssh 3.3
  • Openbsd openssh 3.3p1
  • Openbsd openssh 3.4
  • Openbsd openssh 3.4p1
  • Openbsd openssh 3.5
  • Openbsd openssh 3.5p1
  • Openbsd openssh 3.6
  • Openbsd openssh 3.6.1
  • Openbsd openssh 3.6.1p1
  • Openbsd openssh 3.6.1p2
  • Openbsd openssh 3.7
  • Openbsd openssh 3.7.1
  • Openbsd openssh 3.7.1p1
  • Openbsd openssh 3.7.1p2
  • Openbsd openssh 3.8
  • Openbsd openssh 3.8.1
  • Openbsd openssh 3.8.1p1
  • Openbsd openssh 3.9
  • Openbsd openssh 3.9.1
  • Openbsd openssh 3.9.1p1
  • Openbsd openssh 4.0
  • Openbsd openssh 4.0p1
  • Openbsd openssh 4.1
  • Openbsd openssh 4.1p1
  • Openbsd openssh 4.2
  • Openbsd openssh 4.2p1
  • Openbsd openssh 4.3
  • Openbsd openssh 4.3p1
  • Openbsd openssh 4.3p2
  • Openbsd openssh 4.4
  • Openbsd openssh 4.4p1
  • Openbsd openssh 4.5
  • Openbsd openssh 4.6
  • Openbsd openssh 4.7
  • Openbsd openssh 4.7p1
  • Openbsd openssh 4.8
  • Openbsd openssh 4.9
  • Openbsd openssh 5.0
  • Openbsd openssh 5.1
  • Openbsd openssh 5.2
  • Openbsd openssh 5.3
  • Openbsd openssh 5.4
  • Openbsd openssh 5.5
  • Openbsd openssh 5.6
  • Openbsd openssh 5.7
  • Openbsd openssh 5.8
  • Openbsd openssh 5.8p2
  • Openbsd openssh 5.9
  • Openbsd openssh 6.0
  • Openbsd openssh 6.1
  • Openbsd openssh 6.2
  • Openbsd openssh 6.3
  • Openbsd openssh 6.4
  • Openbsd openssh 6.5
  • Openbsd openssh 6.6
  • Openbsd openssh 6.7
  • Openbsd openssh 6.8
  • Openbsd openssh 6.9
  • Openbsd openssh 7.0
  • Openbsd openssh 7.1
  • Openbsd openssh 7.2
  • Openbsd openssh 7.3
  • Openbsd openssh 7.4
  • Openbsd openssh 7.5

References

  • BugTraq: 101552
  • CVE: CVE-2017-15906

Site Map
RSS Feeds
Careers
Accessibility
Feedback
Privacy Policy
Legal Notices
Copyright © 1999-2010 Juniper Networks, Inc. All rights reserved.
Help
|
My Account
|
Log Out