CVE-2008-0852.md

CVE-2008-0852

Description

freeSSHd 1.2 and earlier allows remote attackers to cause a denial of service (crash) via a SSH2_MSG_NEWKEYS packet to TCP port 22, which triggers a NULL pointer dereference.

POC

Reference

• http://aluigi.altervista.org/adv/freesshdnull-adv.txt

Github

No PoCs found on GitHub currently.