Unrated severityNVD Advisory· Published Jan 8, 2008· Updated Jun 16, 2026
CVE-2008-0132
CVE-2008-0132
Description
Pragma FortressSSH 5.0 Build 4 Revision 293 and earlier handles long input to sshd.exe by creating an error-message window and waiting for the administrator to click in this window before terminating the sshd.exe process, which allows remote attackers to cause a denial of service (connection slot exhaustion) via a flood of SSH connections with long data objects, as demonstrated by (1) a long list of keys and (2) a long username.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3cpe:2.3:a:pragmasys:fortress_ssh:*:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:pragmasys:fortress_ssh:*:*:*:*:*:*:*:*range: <5.0
- cpe:2.3:a:pragmasys:fortress_ssh:5.0:build4_revision293:*:*:*:*:*:*
- (no CPE)range: <=Build 4 Revision 293
Patches
Vulnerability mechanics
References
5- aluigi.altervista.org/adv/pragmassh-adv.txtnvdThird Party Advisory
- aluigi.org/poc/pragmassh.zipnvdThird Party Advisory
- marc.infonvdIssue TrackingMailing ListThird Party Advisory
- www.securityfocus.com/bid/27141nvdThird Party AdvisoryVDB Entry
- exchange.xforce.ibmcloud.com/vulnerabilities/39354nvdThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.