CVE-2008-4109
published 2008-09-18CVE-2008-4109: A certain Debian patch for OpenSSH before 4.3p2-9etch3 on etch; before 4.6p1-1 on sid and lenny; and on other distributions such as SUSE uses functions that…
PriorityP429medium5CVSS 2.0
AVNACLAuNCNINAP
EPSS
28.60%
97.9th percentile
A certain Debian patch for OpenSSH before 4.3p2-9etch3 on etch; before 4.6p1-1 on sid and lenny; and on other distributions such as SUSE uses functions that are not async-signal-safe in the signal handler for login timeouts, which allows remote attackers to cause a denial of service (connection slot exhaustion) via multiple login attempts. NOTE: this issue exists because of an incorrect fix for CVE-2006-5051.
Affected
73 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | openssh | < openssh 1:4.6p1-1 (bookworm) | openssh 1:4.6p1-1 (bookworm) |
| openbsd | openssh | <= 4.3p2 | — |
| openbsd | openssh | <= 4.6 | — |
| openbsd | openssh | — | — |
| openbsd | openssh | — | — |
| openbsd | openssh | — | — |
| openbsd | openssh | — | — |
| openbsd | openssh | — | — |
| openbsd | openssh | — | — |
| openbsd | openssh | — | — |
| openbsd | openssh | — | — |
| openbsd | openssh | — | — |
| openbsd | openssh | — | — |
| openbsd | openssh | — | — |
| openbsd | openssh | — | — |
| openbsd | openssh | — | — |
| openbsd | openssh | — | — |
| openbsd | openssh | — | — |
| openbsd | openssh | — | — |
| openbsd | openssh | — | — |
| openbsd | openssh | — | — |
| openbsd | openssh | — | — |
| openbsd | openssh | — | — |
| openbsd | openssh | — | — |
| openbsd | openssh | — | — |
CVSS provenance
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:N/I:N/A:P
osv8.1HIGH
vendor_debian8.1LOW
vendor_redhat8.1HIGH
vendor_ubuntu6.5MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
OpenSSH vulnerabilities
vendor_ubuntu·2008-10-01·CVSS 6.5
CVE-2008-1657 [MEDIUM] OpenSSH vulnerabilities
Title: OpenSSH vulnerabilities
Summary: OpenSSH vulnerabilities
It was discovered that the ForceCommand directive could be bypassed.
If a local user created a malicious ~/.ssh/rc file, they could execute
arbitrary commands as their user id. This only affected Ubuntu 7.10.
(CVE-2008-1657)
USN-355-1 fixed vulnerabilities in OpenSSH. It was discovered that the
fixes for this issue were incomplete. A remote attacker could attempt
multiple logins, filling all available connection slots, leading to a
denial of service. This only affected Ubuntu 6.06 and 7.04.
(CVE-2008-4109)
Instructions: In general, a standard system upgrade is sufficient to effect the
necessary changes.
Debian
CVE-2008-4109: openssh - A certain Debian patch for OpenSSH before 4.3p2-9etch3 on etch; before 4.6p1-1 o...
vendor_debian·2008·CVSS 8.1
CVE-2008-4109 [HIGH] CVE-2008-4109: openssh - A certain Debian patch for OpenSSH before 4.3p2-9etch3 on etch; before 4.6p1-1 o...
A certain Debian patch for OpenSSH before 4.3p2-9etch3 on etch; before 4.6p1-1 on sid and lenny; and on other distributions such as SUSE uses functions that are not async-signal-safe in the signal handler for login timeouts, which allows remote attackers to cause a denial of service (connection slot exhaustion) via multiple login attempts. NOTE: this issue exists because of an incorrect fix for CVE-2006-5051.
Scope: local
bookworm: resolved (fixed in 1:4.6p1-1)
bullseye: resolved (fixed in 1:4.6p1-1)
forky: resolved (fixed in 1:4.6p1-1)
sid: resolved (fixed in 1:4.6p1-1)
trixie: resolved (fixed in 1:4.6p1-1)
Red Hat
CVE-2008-4109: A certain Debian patch for OpenSSH before 4
vendor_redhat·CVSS 8.1
CVE-2008-4109 [HIGH] CVE-2008-4109: A certain Debian patch for OpenSSH before 4
A certain Debian patch for OpenSSH before 4.3p2-9etch3 on etch; before 4.6p1-1 on sid and lenny; and on other distributions such as SUSE uses functions that are not async-signal-safe in the signal handler for login timeouts, which allows remote attackers to cause a denial of service (connection slot exhaustion) via multiple login attempts. NOTE: this issue exists because of an incorrect fix for CVE-2006-5051.
Statement: Not vulnerable. The patch used to fix CVE-2006-5051 in Red Hat Enterprise Linux 2.1, 3, 4, and 5 was complete and does not suffer from this problem.
GHSA
GHSA-6wrv-35h9-3pj7: A certain Debian patch for OpenSSH before 4
ghsa_unreviewed·2022-05-02·CVSS 8.1
CVE-2008-4109 [HIGH] GHSA-6wrv-35h9-3pj7: A certain Debian patch for OpenSSH before 4
A certain Debian patch for OpenSSH before 4.3p2-9etch3 on etch; before 4.6p1-1 on sid and lenny; and on other distributions such as SUSE uses functions that are not async-signal-safe in the signal handler for login timeouts, which allows remote attackers to cause a denial of service (connection slot exhaustion) via multiple login attempts. NOTE: this issue exists because of an incorrect fix for CVE-2006-5051.
OSV
CVE-2008-4109: A certain Debian patch for OpenSSH before 4
osv·2008-09-18·CVSS 8.1
CVE-2008-4109 [HIGH] CVE-2008-4109: A certain Debian patch for OpenSSH before 4
A certain Debian patch for OpenSSH before 4.3p2-9etch3 on etch; before 4.6p1-1 on sid and lenny; and on other distributions such as SUSE uses functions that are not async-signal-safe in the signal handler for login timeouts, which allows remote attackers to cause a denial of service (connection slot exhaustion) via multiple login attempts. NOTE: this issue exists because of an incorrect fix for CVE-2006-5051.
No detection rules found.
No public exploits indexed.
Zscaler
CVE-2024-6387 & CVE-2024-6409 | ThreatLabz
blogs_zscaler·2024-08-05·CVSS 8.1
[HIGH] CVE-2024-6387 & CVE-2024-6409 | ThreatLabz
Provide users with seamless, secure, reliable access to applications and data.
Build and run secure cloud apps, enable zero trust cloud connectivity, and protect workloads from data center to cloud.
Provide zero trust connectivity for IoT and OT devices and secure remote access to OT systems.
Provide zero trust site-to-site connectivity and reliable access to B2B apps for partners.
Industry Report
Zscaler: A Leader in the 2025 Gartner® Magic Quadrant™ for Security Service Edge (SSE)
USE CASES
INDUSTRY & MARKET SOLUTIONS
PARTNERS
TECHNOLOGY PARTNERS
Resource Center
Events & Trainings
Security Research & Services
Tools
Community & Support
CXO REVOLUTIONARIES
Amplifying the voices of real-world digital and zero trust pioneers
Discover how it began and where it’s going
Meet o
Tenable
How the regreSSHion Vulnerability Could Impact Your Cloud Environment
blogs_tenable·2024-07-05
How the regreSSHion Vulnerability Could Impact Your Cloud Environment
## Cloud Exposure
Tenable Cloud Security (CNAPP) Request a demo
Tenable Cloud Vulnerability Management Request a demo
Tenable CIEM Request a demo
Secure your cloud
## Vulnerability Exposure
Tenable Vulnerability Management Try for free
Tenable Security Center Request a demo
Tenable Web App Scanning Try for free
Tenable Patch Management Request a demo
Tenable Enclave Security Request a demo
Tenable Attack Surface Management Request a demo
Tenable Nessus Try for free
## AI Exposure
Tenable AI Exposure Request a demo
## OT/IoT Exposure
Tenable OT Security Request a demo
## Identity Exposure
Tenable Identity Exposure Request a demo
## Business needs
Active Directory
AI Security Posture Management (AI-SPM)
AWS security
Azure security
Cloud Security Posture Man
Unit42
Threat Brief: CVE-2024-6387 OpenSSH RegreSSHion Vulnerability
blogs_unit42·2024-07-02·CVSS 8.1
CVE-2024-6387 [HIGH] Threat Brief: CVE-2024-6387 OpenSSH RegreSSHion Vulnerability
## Executive Summary
On July 1, 2024, a critical signal handler race condition vulnerability was disclosed in OpenSSH servers (sshd) on glibc-based Linux systems. This vulnerability, called RegreSSHion and tracked as CVE-2024-6387, can result in unauthenticated remote code execution (RCE) with root privileges. This vulnerability has been rated High severity (CVSS 8.1).
This vulnerability impacts the following OpenSSH server versions:
- Open SSH version between 8.5p1-9.8p1
- Open SSH versions earlier than 4.4p1, if they’ve not backport-patched against CVE-2006-5051 or patched against CVE-2008-4109
The SSH features in PAN-OS are not affected by CVE-2024-6387.
Using Palo Alto Networks Xpanse data, we observed 23 million instances of OpenSSH servers including all versions. We saw over 7 m
Unit42
Threat Brief: CVE-2024-6387 OpenSSH RegreSSHion Vulnerability
blogs_unit42·2024-07-02·CVSS 8.1
CVE-2024-6387 [HIGH] Threat Brief: CVE-2024-6387 OpenSSH RegreSSHion Vulnerability
Threat Research Center
High Profile Threats
Vulnerabilities
## Threat Brief: CVE-2024-6387 OpenSSH RegreSSHion Vulnerability
Unit 42
Published: July 2, 2024
Cloud Cybersecurity Research
High Profile Threats
Vulnerabilities
CVE-2024-6387
OpenSSH
RegreSSHion
Remote Code Execution
SSH
## Executive Summary
On July 1, 2024, a critical signal handler race condition vulnerability was disclosed in OpenSSH servers ( sshd ) on glibc-based Linux systems. This vulnerability, called RegreSSHion and tracked as CVE-2024-6387 , can result in unauthenticated remote code execution (RCE) with root privileges. This vulnerability has been rated High severity ( CVSS 8.1 ).
This vulnerability impacts the following OpenSSH server versions:
Open SSH version between 8.5p1-9.8p1
Open SSH versio
Qualys
OpenSSH CVE-2024-6387 RCE Vulnerability: Risk & Mitigation | Qualys
blogs_qualys·2024-07-01·CVSS 8.1
CVE-2024-6387 [HIGH] OpenSSH CVE-2024-6387 RCE Vulnerability: Risk & Mitigation | Qualys
#### Table of Contents
- About OpenSSH: Securing SSH Communications and Protecting Infrastructure from OpenSSH Vulnerabilities
- OpenSSH Server Versions Affected by the regreSSHion Vulnerability
- Understanding the Potential Impact of regreSSHion Vulnerability on OpenSSH Exploits
- Immediate Steps to Mitigate the SSH Vulnerability
- Technical Details of the OpenSSH Exploit (CVE-2024-6387)
- Qualys QID Coverage for Detecting the OpenSSH Exploit
- Discover Vulnerable OpenSSH Assets with Qualys CyberSecurity Asset Management (CSAM)
- Enhancing Your Security Posture with Qualys VMDR to Detect and Remediate OpenSSH Vulnerabilities
- Unified Dashboard for regreSSHion: Track Exposure and Remediation of OpenSSH Exploits
- Automatically Patch regreSSHion Vulnerabilities with Qualys Patch Managemen
Qualys
Remote Unauthenticated Code Execution Vulnerability in OpenSSH Server (regreSSHion)
blogs_qualys·2024-07-01·CVSS 8.1
CVE-2024-6387 [HIGH] Remote Unauthenticated Code Execution Vulnerability in OpenSSH Server (regreSSHion)
## Table of Contents
About OpenSSH: Securing SSH Communications and Protecting Infrastructure from OpenSSH Vulnerabilities
OpenSSH Server Versions Affected by the regreSSHion Vulnerability
Understanding the Potential Impact of regreSSHion Vulnerability on OpenSSH Exploits
Immediate Steps to Mitigate the SSH Vulnerability
Technical Details of the OpenSSH Exploit (CVE-2024-6387)
Qualys QID Coverage for Detecting the OpenSSH Exploit
Discover Vulnerable OpenSSH Assets with Qualys CyberSecurity Asset Management (CSAM)
Enhancing Your Security Posture with Qualys VMDR to Detect and Remediate OpenSSH Vulnerabilities
Unified Dashboard for regreSSHion: Track Exposure and Remediation of OpenSSH Exploits
Automatically Patch regreSSHion Vulnerabilities with Qualys Patch Management
Detect and
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=498678http://lists.opensuse.org/opensuse-security-announce/2008-10/msg00004.htmlhttp://secunia.com/advisories/31885http://secunia.com/advisories/32080http://secunia.com/advisories/32181http://www.debian.org/security/2008/dsa-1638http://www.openwall.com/lists/oss-security/2024/07/01/3http://www.securitytracker.com/id?1020891http://www.ubuntu.com/usn/usn-649-1https://exchange.xforce.ibmcloud.com/vulnerabilities/45202http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=498678http://lists.opensuse.org/opensuse-security-announce/2008-10/msg00004.htmlhttp://secunia.com/advisories/31885http://secunia.com/advisories/32080http://secunia.com/advisories/32181http://www.debian.org/security/2008/dsa-1638http://www.openwall.com/lists/oss-security/2024/07/01/3http://www.securitytracker.com/id?1020891http://www.ubuntu.com/usn/usn-649-1https://exchange.xforce.ibmcloud.com/vulnerabilities/45202
2008-09-18
Published