109.203.102.214

Regular View Raw Data History
Last Update: 2022-01-14

GeneralInformation

Country United Kingdom
City Nottingham
Organization UK VmWare Cloud Hosting
ISP Node4 Limited
ASN AS31727

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2011-5000 The ssh_gssapi_parse_ename function in gss-serv.c in OpenSSH 5.8 and earlier, when gssapi-with-mic authentication is enabled, allows remote authenticated users to cause a denial of service (memory consumption) via a large value in a certain length field. NOTE: there may be limited scenarios in which this issue is relevant.
CVE-2016-10708 sshd in OpenSSH before 7.4 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via an out-of-sequence NEWKEYS message, as demonstrated by Honggfuzz, related to kex.c and packet.c.
CVE-2014-1692 The hash_buffer function in schnorr.c in OpenSSH through 6.4, when Makefile.inc is modified to enable the J-PAKE protocol, does not initialize certain data structures, which might allow remote attackers to cause a denial of service (memory corruption) or have unspecified other impact via vectors that trigger an error condition.
CVE-2010-5107 The default configuration of OpenSSH through 6.1 enforces a fixed time limit between establishing a TCP connection and completing a login, which makes it easier for remote attackers to cause a denial of service (connection-slot exhaustion) by periodically making many new TCP connections.
CVE-2017-15906 The process_open function in sftp-server.c in OpenSSH before 7.6 does not properly prevent write operations in readonly mode, which allows attackers to create zero-length files.
CVE-2010-4478 OpenSSH 5.6 and earlier, when J-PAKE is enabled, does not properly validate the public parameters in the J-PAKE protocol, which allows remote attackers to bypass the need for knowledge of the shared secret, and successfully authenticate, by sending crafted values in each round of the protocol, a related issue to CVE-2010-4252.
CVE-2016-0777 The resend_bytes function in roaming_common.c in the client in OpenSSH 5.x, 6.x, and 7.x before 7.1p2 allows remote servers to obtain sensitive information from process memory by requesting transmission of an entire buffer, as demonstrated by reading a private key.
CVE-2011-4327 ssh-keysign.c in ssh-keysign in OpenSSH before 5.8p2 on certain platforms executes ssh-rand-helper with unintended open file descriptors, which allows local users to obtain sensitive key information via the ptrace system call.
CVE-2010-4755 The (1) remote_glob function in sftp-glob.c and the (2) process_put function in sftp.c in OpenSSH 5.8 and earlier, as used in FreeBSD 7.3 and 8.1, NetBSD 5.0.2, OpenBSD 4.7, and other products, allow remote authenticated users to cause a denial of service (CPU and memory consumption) via crafted glob expressions that do not match any pathnames, as demonstrated by glob expressions in SSH_FXP_STAT requests to an sftp daemon, a different vulnerability than CVE-2010-2632.
CVE-2012-0814 The auth_parse_options function in auth-options.c in sshd in OpenSSH before 5.7 provides debug messages containing authorized_keys command options, which allows remote authenticated users to obtain potentially sensitive information by reading these messages, as demonstrated by the shared user account required by Gitolite. NOTE: this can cross privilege boundaries because a user account may intentionally have no shell or filesystem access, and therefore may have no supported way to read an authorized_keys file in its own home directory.
933636646 | 2022-01-14T05:56:18.951922
        
21 / tcp
-1348907326 | 2022-01-13T15:36:03.506162
        
22 / tcp
1545967204 | 2022-01-12T22:14:23.325346
        
53 / udp
-532414783 | 2022-01-14T00:24:45.494225
        
80 / tcp
-1901259569 | 2022-01-14T20:38:14.863346
        
111 / tcp
1559185454 | 2022-01-16T01:29:44.991730
        
143 / tcp
1563265241 | 2022-01-17T00:13:05.695888
        
443 / tcp
-818514286 | 2022-01-15T19:14:30.224316
        
465 / tcp
-1656193071 | 2022-01-10T19:49:41.712980
        
587 / tcp
259782234 | 2022-01-08T06:07:21.573110
        
2079 / tcp
-1008311204 | 2022-01-15T23:44:16.315547
        
2082 / tcp
-1408304361 | 2022-01-15T23:54:26.261854
        
2083 / tcp
2131367355 | 2022-01-01T06:22:29.655078
        
2086 / tcp
42058591 | 2022-01-17T02:47:27.027101
        
2087 / tcp
323816495 | 2022-01-06T01:32:31.753129
        
2096 / tcp



Contact Us

Shodan ® - All rights reserved