D(HE)at is a denial-of-service (DoS) attack on the finite field Diffie-Hellman (DH) key exchange protocol allowing remote users without any privileges triggering expensive server-side DH modular-exponentiation calculations without any significant resource (CPU) requirement on the attacker’s side.

The attack was assigned CVE-2002-20001 number while the full technical paper published at IEEE Access.

This page collects analyzer tools, mitigation techniques and advisories relate to the attack.

Recent References

An Analysis of the DHEat DoS Against SSH in Cloud Environments

The DHEat denial-of-service vulnerability involves sending a large number of Diffie-Hellman (DH) public keys to a peer, causing it to perform many unnecessary modular exponentiations and wasting CPU resources (in fact, the attacker can simply send random numbers instead of real DH keys to avoid incurring the computational penalty themselves).

v3.2.0 Release

Added implementation of the DHEat denial-of-service attack (see --dheat option; CVE-2002-20001).

0.12.2 Changelog

Checker for well-known SSH vulnerabilities: Sweet32 attack, Anonymous Diffie-Hellman, NULL encryption, RC4, Non-Forward-Secret, Early SSH version, Weak Diffie-Hellman, DHEat attack, Terrapin attack

D(HE)at Attack

(Project Page)

Recent References

An Analysis of the DHEat DoS Against SSH in Cloud Environments

v3.2.0 Release

0.12.2 Changelog

More

D(HE)at: A Practical Denial-of-Service Attack on the Finite Field Diffie–Hellman Key Exchange

SA-2023-059 - DHEat attack (CVE-2002-20001)

Diffie-Hellman Ephemeral Key Exchange DoS Vulnerability (SSL/TLS, D(HE)ater)

0.8.4 Changelog