CVE-2013-4434
published 2013-10-25CVE-2013-4434: Dropbear SSH Server before 2013.59 generates error messages for a failed logon attempt with different time delays depending on whether the user account exists…
PriorityP427medium5CVSS 2.0
AVNACLAuNCPINAN
EPSS
5.75%
92.1th percentile
Dropbear SSH Server before 2013.59 generates error messages for a failed logon attempt with different time delays depending on whether the user account exists, which allows remote attackers to discover valid usernames.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | dropbear | < dropbear 2012.55-1.4 (bookworm) | dropbear 2012.55-1.4 (bookworm) |
| dropbear_ssh_project | dropbear_ssh | < 2013.59 | 2013.59 |
| dropbear_ssh_project | dropbear_ssh | >= 0 < 2012.55-1.4 | 2012.55-1.4 |
| dropbear_ssh_project | dropbear_ssh | >= 0 < 2012.55-1.4 | 2012.55-1.4 |
| dropbear_ssh_project | dropbear_ssh | >= 0 < 2012.55-1.4 | 2012.55-1.4 |
| dropbear_ssh_project | dropbear_ssh | >= 0 < 2012.55-1.4 | 2012.55-1.4 |
CVSS provenance
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:P/I:N/A:N
osv5.0MEDIUM
vendor_debian5.0LOW
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-7j5m-wjm2-xppv: Dropbear SSH Server before 2013
ghsa_unreviewed·2022-05-14
CVE-2013-4434 [MEDIUM] GHSA-7j5m-wjm2-xppv: Dropbear SSH Server before 2013
Dropbear SSH Server before 2013.59 generates error messages for a failed logon attempt with different time delays depending on whether the user account exists, which allows remote attackers to discover valid usernames.
OSV
CVE-2013-4434: Dropbear SSH Server before 2013
osv·2013-10-25·CVSS 5.0
CVE-2013-4434 [MEDIUM] CVE-2013-4434: Dropbear SSH Server before 2013
Dropbear SSH Server before 2013.59 generates error messages for a failed logon attempt with different time delays depending on whether the user account exists, which allows remote attackers to discover valid usernames.
Debian
CVE-2013-4434: dropbear - Dropbear SSH Server before 2013.59 generates error messages for a failed logon a...
vendor_debian·2013·CVSS 5.0
CVE-2013-4434 [MEDIUM] CVE-2013-4434: dropbear - Dropbear SSH Server before 2013.59 generates error messages for a failed logon a...
Dropbear SSH Server before 2013.59 generates error messages for a failed logon attempt with different time delays depending on whether the user account exists, which allows remote attackers to discover valid usernames.
Scope: local
bookworm: resolved (fixed in 2012.55-1.4)
bullseye: resolved (fixed in 2012.55-1.4)
forky: resolved (fixed in 2012.55-1.4)
sid: resolved (fixed in 2012.55-1.4)
trixie: resolved (fixed in 2012.55-1.4)
No detection rules found.
No public exploits indexed.
http://lists.opensuse.org/opensuse-updates/2013-10/msg00061.htmlhttp://lists.opensuse.org/opensuse-updates/2013-11/msg00046.htmlhttp://secunia.com/advisories/55173http://www.openwall.com/lists/oss-security/2013/10/16/11http://www.securityfocus.com/bid/62993https://matt.ucc.asn.au/dropbear/CHANGEShttps://secure.ucc.asn.au/hg/dropbear/rev/d7784616409ahttps://support.citrix.com/article/CTX216642http://lists.opensuse.org/opensuse-updates/2013-10/msg00061.htmlhttp://lists.opensuse.org/opensuse-updates/2013-11/msg00046.htmlhttp://secunia.com/advisories/55173http://www.openwall.com/lists/oss-security/2013/10/16/11http://www.securityfocus.com/bid/62993https://matt.ucc.asn.au/dropbear/CHANGEShttps://secure.ucc.asn.au/hg/dropbear/rev/d7784616409ahttps://support.citrix.com/article/CTX216642
2013-10-25
Published