OpenSSH Remote PAM Denial Of Service Vulnerability

info
discussion
exploit
solution
references

OpenSSH Remote PAM Denial Of Service Vulnerability

OpenSSH is susceptible to a remote denial-of-service vulnerability. This issue is due to a design flaw when handling connections when configured to use OpenPAM authentication system.

This issue may be exploited by remote attackers to deny SSH service to legitimate users.

OpenSSH in conjunction with OpenPAM on FreeBSD versions 5.3 and 5.4 are affected by this issue. Other operating systems and versions may also be affected.