CVE-2013-6890

Name of the Vulnerable Software and Affected Versions denyhosts versions prior to 2.6-r9 denyhosts version 2.6

Description The issue allows remote attackers to cause a denial of service, specifically an incorrect block of IP addresses, via crafted login names. This is due to an incorrect regular expression used when analyzing authentication logs. The vulnerability can be exploited remotely, potentially leading to disruption of protected information.

Recommendations For denyhosts versions prior to 2.6-r9, update to version 2.6-r9 or later to resolve the issue. For denyhosts version 2.6, consider applying configuration changes to mitigate the risk of denial of service attacks until a patch is available.