Dropbear SSH Server Use After Free Remote Code Execution Vulnerability

Dropbear SSH Server Use After Free Remote Code Execution Vulnerability

Dropbear SSH Server is prone to a remote code-execution vulnerability due to a use-after-free error.

An attacker can leverage this issue to execute arbitrary code with root-level privileges. This may allow an attacker to fully compromise the vulnerable system.

Note: To exploit the issue an attacker must be authenticated using a public key and a command restriction is enforced.

Dropbear SSH Server versions from 0.52 to 2011.54 are vulnerable.