Menu
%SSH-3-BAD_VERSION: Bad protocol version identifier 'DH_GEX_125' from [IP]
(The immediate fix):
In tests, the leak occurs in the ssh_kex_hash debug buffer, which prints up to 125 bytes of adjacent memory—hence the "125" in the name.
While Cisco products are often scrutinized for IOS flaws, this vulnerability targets the management plane—the Cisco Smart Licensing Utility (CSLU)—a tool many administrators assume is a benign, secondary component of their network architecture.
