CVE-2007-4321

CVSS 6.8 - MEDIUM

Description

fail2ban 0.8 and earlier does not properly parse sshd log files, which allows remote attackers to add arbitrary hosts to the /etc/hosts.deny file and cause a denial of service by adding arbitrary IP addresses to the sshd log file, as demonstrated by logging in via ssh with a client protocol version identification containing an IP address string, a different vector than CVE-2006-6302.

Affected Products

1

Vendor	Product	Version
fail2ban	fail2ban	`0.8`

References

http://bugs.gentoo.org/show_bug.cgi?id=181214

http://osvdb.org/42484

http://secunia.com/advisories/23237

http://secunia.com/advisories/28374

http://security.gentoo.org/glsa/glsa-200707-13.xml

http://www.debian.org/security/2008/dsa-1456

http://www.ossec.net/en/attacking-loganalysis.html

http://www.securityfocus.com/bid/25117

http://bugs.gentoo.org/show_bug.cgi?id=181214

http://osvdb.org/42484

http://secunia.com/advisories/23237

http://secunia.com/advisories/28374

http://security.gentoo.org/glsa/glsa-200707-13.xml

http://www.debian.org/security/2008/dsa-1456

http://www.ossec.net/en/attacking-loganalysis.html

http://www.securityfocus.com/bid/25117

Weakness Types

NVD-CWE-Other

CVE Information

CVE ID:: CVE-2007-4321
Published:: 2007-08-14
Modified:: 2026-04-23
CVSS Score:: 6.8
Severity:: MEDIUM
Vector:: AV:N/AC:M/Au:N/C:P/I:P/A:P

Affected Vendors

fail2ban

Quick Actions

View on NVD Find Similar CVEs

CVSS Severity Scale

0.0 - 3.9 LOW

4.0 - 6.9 MEDIUM

7.0 - 8.9 HIGH

9.0 - 10.0 CRITICAL