Format string vulnerability in Dropbear SSH before 2016.74 allows remote attackers to execute arbitrary code via format string specifiers in the (1) username or (2) host argument.
Published: 2017-03-03
CVSS: 10.0
CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Download CVE-2016-7406 POC (Proof-of-Concept) here:
Tip: Download official Tor Browser at https://www.torproject.org/download/ to access .onion links.
https://connollyfinan.ie/poc-479-cve-2017-1000364/
https://connollyfinan.ie/poc-309-cve-2023-40931/
https://connollyfinan.ie/poc-433-cve-2024-43425/