Lucene search

[email protected]CVE-2007-2791

HistoryMay 22, 2007 - 12:30 a.m.

CVE-2007-2791

2007-05-2200:30:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2007-2791

secure shell

ssh

hp tru64 unix

vulnerability

remote attackers

timing attacks

authinteractivefailurerandomtimeout

6.8 Medium

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.12 Low

EPSS

Percentile

95.3%

JSON

Unspecified vulnerability in the Secure Shell (SSH) in HP Tru64 UNIX 5.1B-4 and 5.1B-3 allows remote attackers to identify valid users via unspecified vectors, probably related to timing attacks and AuthInteractiveFailureRandomTimeout.

CPENameOperatorVersion
hp:tru64hp tru64eq5.1b4
hp:tru64hp tru64eq5.1b3

CPE	Name	Operator	Version
hp:tru64	hp tru64	eq	5.1b4
hp:tru64	hp tru64	eq	5.1b3

References

h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en&cc=us&objectID=c01007552

osvdb.org/36204

secunia.com/advisories/24036

www.securityfocus.com/bid/24021

www.securitytracker.com/id?1018065

www.vupen.com/english/advisories/2007/1851

exchange.xforce.ibmcloud.com/vulnerabilities/34329

6.8 Medium

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.12 Low

EPSS

Percentile

95.3%

JSON

Related for CVE-2007-2791

packetstorm1 seebug2 exploitpack1 prion1 exploitdb1