BlockHosts Remote Denial of Service Vulnerability
BID:24090
Info
BlockHosts Remote Denial of Service Vulnerability
| Bugtraq ID: | 24090 |
| Class: | Design Error |
| CVE: |
CVE-2007-2765 |
| Remote: | Yes |
| Local: | No |
| Published: | May 22 2007 12:00AM |
| Updated: | Jun 07 2007 03:10AM |
| Credit: | The vendor reported this issue. |
| Vulnerable: |
ACZoom BlockHosts 2.0.2 |
| Not Vulnerable: |
ACZoom BlockHosts 2.0.3 |
Discussion
BlockHosts Remote Denial of Service Vulnerability
BlockHosts is prone to a remote denial-of-service vulnerability because the application fails to properly validate the source of authentication failure messages.
Successfully exploiting this issue allows remote attackers to add arbitrary IP addresses to the block list used by the application. This allows attackers to deny further SSH network access to arbitrary IP addresses, denying service to legitimate users.
Versions of BlockHosts prior to 2.0.3 are vulnerable to this issue.
BlockHosts is prone to a remote denial-of-service vulnerability because the application fails to properly validate the source of authentication failure messages.
Successfully exploiting this issue allows remote attackers to add arbitrary IP addresses to the block list used by the application. This allows attackers to deny further SSH network access to arbitrary IP addresses, denying service to legitimate users.
Versions of BlockHosts prior to 2.0.3 are vulnerable to this issue.
Exploit / POC
BlockHosts Remote Denial of Service Vulnerability
Attackers use standard SSH-client software to exploit this issue.
Attackers use standard SSH-client software to exploit this issue.
Solution / Fix
BlockHosts Remote Denial of Service Vulnerability
Solution:
The vendor released an update to address this issue. Please see the references for more information.
ACZoom BlockHosts 2.0.2
Solution:
The vendor released an update to address this issue. Please see the references for more information.
ACZoom BlockHosts 2.0.2
-
ACZoom BlockHosts-2.0.3-1.noarch.rpm
http://www.aczoom.com/tools/blockhosts/BlockHosts-2.0.3-1.noarch.rpm -
ACZoom BlockHosts-2.0.3.zip
http://www.aczoom.com/tools/blockhosts/BlockHosts-2.0.3.zip
References
BlockHosts Remote Denial of Service Vulnerability
References:
References:
- ChangeLog 2.0.3 (ACZoom)
- Remote log injection on DenyHosts,Fail2ban and BlockHosts (Daniel Cid
- Vendor Homepage (ACZoom)