MitM attack against OpenSSH’s VerifyHostKeyDNS-enabled client – Full Disclosure
Posted by Qualys Security Advisory via Fulldisclosure on Feb 20
Qualys Security Advisory
CVE-2025-26465: MitM attack against OpenSSH’s VerifyHostKeyDNS-enabled
client
CVE-2025-26466: DoS attack against OpenSSH’s client and server
========================================================================
Contents
========================================================================
Summary
Background
Experiments
Results
MitM attack against OpenSSH’s VerifyHostKeyDNS-enabled client
DoS…
– Read More – Full Disclosure