CVE-2006-5051 · threatengine.sh

Home/CVE/Signal handler race condition in OpenSSH before 4.4 allows remote attackers to cause a denial of service (crash), and po

CVE

CVE-2006-5051

Signal handler race condition in OpenSSH before 4.4 allows remote attackers to cause a denial of service (crash), and po

Signal handler race condition in OpenSSH before 4.4 allows remote attackers to cause a denial of service (crash), and possibly execute arbitrary code if GSSAPI authentication is enabled, via unspecified vectors that lead to a double-free.

HIGH · CVSS 8.1 EPSS 0.02554

Schedule remediation

CVSS base score ≥ 7.0

Sigma rules2 YARA rules0

⬡

Weakness Classification

CWE-415Double Free

▤

Affected Products & Versions

6

openbsd openssh<= 4.4
debian linuxall versions
apple mac os x< 10.3.9
apple mac os x>= 10.4 and <= 10.4.8
apple mac os x server< 10.3.9
apple mac os x server>= 10.4 and <= 10.4.8

◈

Sigma Hunt Rules

2

Exact rules name this CVE ID. Product rules name an affected product in their title. Related rules cover techniques used by actors who exploited this CVE. Showing the most relevant matches; the complete related set is on the full drill-down.

productmediumSuspicious OpenSSH Daemon Error

productmediumOpenSSH Server Listening On Socket

See all related Sigma rules for this CVE

▣

Scoring & Timeline

8.1

HIGH · CVSS v3.1 · secalert@redhat.com

View on NVD

Attack Vector

Network Adjacent Local Physical

Attack Complexity

Low High

Privileges Required

None Low High

User Interaction

None Required

Scope

Unchanged Changed

Confidentiality

None Low High

Integrity

None Low High

Availability

None Low High

Published to NVD27 Sep 2006 · 11:07 PM

CVSS VectorCVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

⚑

Vendor Advisories

17

siemens-csafSSA-082556
suse-csafSUSE-SU-2025:20009-1
siemens-csafSSA-446545
suse-csafSUSE-SU-2024:2275-1
suse-csafSUSE-SU-2024:2275-2
Show all 17 vendor advisoriessuse-csafopenSUSE-SU-2024:14088-1
cisco-csafcisco-sa-openssh-rce-2024
rhsaRHSA-2024:4484Important
rhsaRHSA-2024:4479Important
rhsaRHSA-2024:4474Important
rhsaRHSA-2024:4389Important
rhsaRHSA-2024:4312Important
rhsaRHSA-2024:4340Important
rhsaRHSA-2024:4469Important
usnUSN-355-1
rhsaRHSA-2006:0697Important
rhsaRHSA-2006:0698Important

🔗

References & Sources

58

Source URLs (vendor pages, mailing lists, write-ups). Exploit/PoC links are in their own section above to avoid duplication.

ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-06:22.openssh.ascBroken Link

ftp://patches.sgi.com/support/free/security/advisories/20061001-01-P.ascBroken Link

http://docs.info.apple.com/article.html?artnum=305214Broken Link

http://lists.apple.com/archives/security-announce/2007/Mar/msg00002.htmlMailing List

http://lists.freebsd.org/pipermail/freebsd-security/2006-October/004051.htmlMailing List

http://marc.info/?l=openssh-unix-dev&m=115939141729160&w=2Mailing List

Show all 58 references

http://openssh.org/txt/release-4.4Release Notes

http://secunia.com/advisories/22158Broken LinkVendor Advisory

http://secunia.com/advisories/22173Broken LinkVendor Advisory

http://secunia.com/advisories/22183Broken LinkVendor Advisory

http://secunia.com/advisories/22196Broken LinkVendor Advisory

http://secunia.com/advisories/22208Broken LinkVendor Advisory

http://secunia.com/advisories/22236Broken LinkVendor Advisory

http://secunia.com/advisories/22245Broken LinkVendor Advisory

http://secunia.com/advisories/22270Broken LinkVendor Advisory

http://secunia.com/advisories/22352Broken LinkVendor Advisory

http://secunia.com/advisories/22362Broken LinkVendor Advisory

http://secunia.com/advisories/22487Broken LinkVendor Advisory

http://secunia.com/advisories/22495Broken Link

http://secunia.com/advisories/22823Broken LinkVendor Advisory

http://secunia.com/advisories/22926Broken LinkVendor Advisory

http://secunia.com/advisories/23680Broken LinkVendor Advisory

http://secunia.com/advisories/24479Broken LinkVendor Advisory

http://secunia.com/advisories/24799Broken LinkVendor Advisory

http://secunia.com/advisories/24805Broken LinkVendor Advisory

http://security.freebsd.org/advisories/FreeBSD-SA-06%3A22.openssh.ascThird Party Advisory

http://security.gentoo.org/glsa/glsa-200611-06.xmlThird Party Advisory

http://securitytracker.com/id?1016940Broken LinkThird Party AdvisoryVDB Entry

http://slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.592566Broken Link

http://sourceforge.net/forum/forum.php?forum_id=681763Broken Link

http://support.avaya.com/elmodocs2/security/ASA-2006-216.htmThird Party Advisory

http://www-unix.globus.org/mail_archive/security-announce/2007/04/msg00000.htmlBroken Link

http://www.arkoon.fr/upload/alertes/36AK-2006-07-FR-1.0_FAST360_OPENSSH.pdfBroken Link

http://www.arkoon.fr/upload/alertes/43AK-2006-09-FR-1.0_SSL360_OPENSSH.pdfBroken Link

http://www.debian.org/security/2006/dsa-1189Mailing List

http://www.debian.org/security/2006/dsa-1212Broken Link

http://www.kb.cert.org/vuls/id/851340Third Party AdvisoryUS Government Resource

http://www.mandriva.com/security/advisories?name=MDKSA-2006:179Third Party Advisory

http://www.novell.com/linux/security/advisories/2006_62_openssh.htmlBroken Link

http://www.openbsd.org/errata.html#sshRelease Notes

http://www.openpkg.org/security/advisories/OpenPKG-SA-2006.022-openssh.htmlBroken Link

http://www.openwall.com/lists/oss-security/2024/07/01/3

http://www.openwall.com/lists/oss-security/2024/07/28/3

http://www.osvdb.org/29264Broken Link

http://www.redhat.com/support/errata/RHSA-2006-0697.htmlBroken Link

http://www.redhat.com/support/errata/RHSA-2006-0698.htmlBroken Link

http://www.securityfocus.com/bid/20241Broken LinkThird Party AdvisoryVDB Entry

http://www.ubuntu.com/usn/usn-355-1Broken Link

http://www.us-cert.gov/cas/techalerts/TA07-072A.htmlThird Party AdvisoryUS Government Resource

http://www.vmware.com/support/vi3/doc/esx-3069097-patch.htmlBroken Link

http://www.vmware.com/support/vi3/doc/esx-9986131-patch.htmlBroken Link

http://www.vupen.com/english/advisories/2006/4018Broken Link

http://www.vupen.com/english/advisories/2006/4329Broken Link

http://www.vupen.com/english/advisories/2007/0930Broken Link

http://www.vupen.com/english/advisories/2007/1332Broken Link

https://exchange.xforce.ibmcloud.com/vulnerabilities/29254Third Party AdvisoryVDB Entry

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11387Broken Link

https://www.openwall.com/lists/oss-security/2024/07/28/3

Intelligence Graph · click any node to traverse

CVETechnique ActorTool Family

drag to reposition · click any node to traverse · button top-right enlarges

External lookups - second-class, for what we don’t hold ourselves

NVD CVE.org CISA Vulners Exploit-DB GitHub PoC VulnCheck KEV GreyNoise

Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities

Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs

Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures

Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1

About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service

threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin