← Back

CVE-2010-5107

nvd nist
Published: Mar 7, 2013Modified: May 29, 2026

JSON object

Loading...
7.5
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Exploitability: 3.9 / Impact: 3.6
Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0 (Secondary)

Description

The default configuration of OpenSSH through 6.1 enforces a fixed time limit between establishing a TCP connection and completing a login, which makes it easier for remote attackers to cause a denial of service (connection-slot exhaustion) by periodically making many new TCP connections.

Affected (83)

Products: Openbsd: Openssh
Openbsd
1 product
Openssh
Configuration A
83 vulnerable
Vulnerable SoftwareAffected Versions
Openbsd
Openssh
Up to 6.1
Openssh
Version 1.2.1
Openssh
Version 1.2.27
Openssh
Version 1.2.2
Openssh
Version 1.2.3
Openssh
Version 1.2
Openssh
Version 1.3
Openssh
Version 1.5.7
Openssh
Version 1.5.8
Openssh
Version 1.5
Openssh
Version 2.1.1
Openssh
Version 2.1
Openssh
Version 2.2
Openssh
Version 2.3.1
Openssh
Version 2.3
Openssh
Version 2.5.1
Openssh
Version 2.5.2
Openssh
Version 2.5
Openssh
Version 2.9.9
Openssh
Version 2.9.9p2
Openssh
Version 2.9
Openssh
Version 2.9p1
Openssh
Version 2.9p2
Openssh
Version 3.0.1
Openssh
Version 3.0.1p1
Openssh
Version 3.0.2
Openssh
Version 3.0.2p1
Openssh
Version 3.0
Openssh
Version 3.0p1
Openssh
Version 3.1
Openssh
Version 3.1p1
Openssh
Version 3.2.2
Openssh
Version 3.2.2p1
Openssh
Version 3.2.3p1
Openssh
Version 3.2
Openssh
Version 3.3
Openssh
Version 3.3p1
Openssh
Version 3.4
Openssh
Version 3.4p1
Openssh
Version 3.5
Openssh
Version 3.5p1
Openssh
Version 3.6.1
Openssh
Version 3.6.1p1
Openssh
Version 3.6.1p2
Openssh
Version 3.6
Openssh
Version 3.7.1
Openssh
Version 3.7.1p1
Openssh
Version 3.7.1p2
Openssh
Version 3.7
Openssh
Version 3.8.1
Openssh
Version 3.8.1p1
Openssh
Version 3.8
Openssh
Version 3.9.1
Openssh
Version 3.9.1p1
Openssh
Version 3.9
Openssh
Version 4.0
Openssh
Version 4.0p1
Openssh
Version 4.1
Openssh
Version 4.1p1
Openssh
Version 4.2
Openssh
Version 4.2p1
Openssh
Version 4.3
Openssh
Version 4.3p1
Openssh
Version 4.3p2
Openssh
Version 4.4
Openssh
Version 4.4p1
Openssh
Version 4.5
Openssh
Version 4.6
Openssh
Version 4.7
Openssh
Version 4.8
Openssh
Version 4.9
Openssh
Version 5.0
Openssh
Version 5.1
Openssh
Version 5.2
Openssh
Version 5.3
Openssh
Version 5.4
Openssh
Version 5.5
Openssh
Version 5.6
Openssh
Version 5.7
Openssh
Version 5.8
Openssh
Version 5.8p2
Openssh
Version 5.9
Openssh
Version 6.0

Related CWEs

CWE-400
Uncontrolled Resource Consumption
The product does not properly control the allocation and maintenance of a limited resource, thereby enabling an actor to influence the amount of resources consumed, eventually leading to the exhaustion of available resources.

References (24)

Source: secalert@redhat.com
Source: secalert@redhat.com
Source: secalert@redhat.com
Source: secalert@redhat.com
Source: secalert@redhat.com
Source: secalert@redhat.com
Source: secalert@redhat.com
Source: secalert@redhat.com
Source: secalert@redhat.com
Source: secalert@redhat.com
Source: secalert@redhat.com
Source: secalert@redhat.com
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.