CVE-2007-1099

EPSS 1.7%

Published: 2/26/2007Modified: 4/28/2026

Also known as:DEBIAN-CVE-2007-1099

Description

dbclient in Dropbear SSH client before 0.49 does not sufficiently warn the user when it detects a hostkey mismatch, which might allow remote attackers to conduct man-in-the-middle attacks.

Affected packages (1)

Debian/dropbearfrom 0, < 0.49-1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2007-1099