CVE-2005-4178
dropbear - buffer overflow
EPSS 1.7%
Description
Buffer overflow in Dropbear server before 0.47 allows authenticated users to execute arbitrary code via unspecified inputs that cause insufficient memory to be allocated due to an incorrect expression that does not enforce the proper order of operations.
How to fix CVE-2005-4178
To remediate CVE-2005-4178, upgrade the affected package to a fixed version below.
- Debian/dropbear—upgrade to 0.47-1 or later
- Debian/dropbear—upgrade to 0.45-2sarge0 or later
Is CVE-2005-4178 being exploited?
Low — EPSS is 1.7%, meaning exploitation activity has not been observed at scale.
Affected packages (2)
- from 0, < 0.47-1
- from 0, < 0.45-2sarge0