Download
| Alert*
|
oval:org.secpod.oval:def:75396
The host is installed with OpenSSH through 6.1 and is prone to a denial of service vulnerability. A flaw is present in the application, which is due to default configuration which enforces a fixed time limit between establishing a TCP connection and completing a login. Successful exploitation could ... oval:org.secpod.oval:def:104605 SSH is a program for logging into and executing commands on a remote machine. SSH is intended to replace rlogin and rsh, and to provide secure encrypted communications between two untrusted hosts over an insecure network. X11 connections and arbitrary TCP/IP ports can also be forwarded over the sec ... oval:org.secpod.oval:def:1501378 The default configuration of OpenSSH through 6.1 enforces a fixed time limit between establishing a TCP connection and completing a login, which makes it easier for remote attackers to cause a denial of service (connection-slot exhaustion) by periodically making many new TCP connections. oval:org.secpod.oval:def:501131 OpenSSH is OpenBSD"s Secure Shell protocol implementation. These packages include the core files necessary for the OpenSSH client and server. The default OpenSSH configuration made it easy for remote attackers to exhaust unauthorized connection slots and prevent other users from being able to log i ... oval:org.secpod.oval:def:21281 The host is missing a patch containing a security fixes, which affects the following package(s):openssh.base.server oval:org.secpod.oval:def:1300168 Multiple vulnerabilities has been found and corrected in openssh: The auth_parse_options function in auth-options.c in sshd in OpenSSH before 5.7 provides debug messages containing authorized_keys command options, which allows remote authenticated users to obtain potentially sensitive information by ... oval:org.secpod.oval:def:104665 SSH is a program for logging into and executing commands on a remote machine. SSH is intended to replace rlogin and rsh, and to provide secure encrypted communications between two untrusted hosts over an insecure network. X11 connections and arbitrary TCP/IP ports can also be forwarded over the sec ... oval:org.secpod.oval:def:1500300 Updated openssh packages that fix one security issue, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having low security impact. A Common Vulnerability Scoring System base score, which gives a ... oval:org.secpod.oval:def:205757 The advisory is missing the security advisory description. For more information please visit the reference link |
