{"vuid":"VU#626979","idnumber":"626979","name":"Icon Labs SSH server vulnerabilities","keywords":["Icon Labs","connect","disconnect"],"overview":"The Icon Labs Iconfidant SSH server contails multiple vulnerabilities. The most severe of these issues may allow an attacker to cause a vulnerable system to crash.","clean_desc":"The Iconfident SSH is a Secure Shell (SSH) server that runs on VxWorks-based systems. Versions of the Iconfident server prior to 2.3.8 contain multiple denial of service vulnerabilities.","impact":"A remote, unauthenticated attacker may be able to cause a vulnerable system to crash or become unable to accept remote SSH connections.","resolution":"Upgrade\nIcon Labs has released Iconfident SSH server 2.3.8 to address these issues.","workarounds":"Restrict access Restricting access to the Iconfident SSH server by using access control lists or firewall rules may prevent an attacker from exploiting this vulnerability.","sysaffected":"","thanks":"Thanks to Icon Labs for information that was used in this report.","author":"This document was written by Ryan Giobbi.","public":["http://www.icon-labs.com/news/read.asp?newsID=77","http://tools.ietf.org/html/rfc4252"],"cveids":[""],"certadvisory":"","uscerttechnicalalert":null,"datecreated":"2008-02-01T15:16:27Z","publicdate":"2008-05-21T00:00:00Z","datefirstpublished":"2008-06-09T13:06:37Z","dateupdated":"2009-04-23T11:10:07Z","revision":13,"vrda_d1_directreport":"1","vrda_d1_population":"2","vrda_d1_impact":"3","cam_widelyknown":"15","cam_exploitation":"0","cam_internetinfrastructure":"10","cam_population":"10","cam_impact":"4","cam_easeofexploitation":"15","cam_attackeraccessrequired":"20","cam_scorecurrent":"5.625","cam_scorecurrentwidelyknown":"6.75","cam_scorecurrentwidelyknownexploited":"11.25","ipprotocol":"tcp","cvss_accessvector":"","cvss_accesscomplexity":"","cvss_authentication":null,"cvss_confidentialityimpact":"","cvss_integrityimpact":"","cvss_availabilityimpact":"","cvss_exploitablity":null,"cvss_remediationlevel":"","cvss_reportconfidence":"","cvss_collateraldamagepotential":"","cvss_targetdistribution":"","cvss_securityrequirementscr":"","cvss_securityrequirementsir":"","cvss_securityrequirementsar":"","cvss_basescore":"","cvss_basevector":"","cvss_temporalscore":"","cvss_environmentalscore":"","cvss_environmentalvector":"","metric":5.625,"vulnote":null}