Lucene search
HistoryApr 13, 2010 - 5:30 p.m.
CVE-2009-4510
cve-2009-4510
ssh
tandberg vcs
man-in-the-middle attack
security vulnerability
6.7 Medium
AI Score
Confidence
Low
8.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:S/C:C/I:C/A:C
0.002 Low
EPSS
Percentile
51.6%
The SSH service on the TANDBERG Video Communication Server (VCS) before X5.1 uses a fixed DSA key, which makes it easier for remote attackers to conduct man-in-the-middle attacks and spoof arbitrary servers via crafted SSH packets.
Related
prion
prion
Code injection
2010-04-13 17:30:00
securityvulns
securityvulns
CVE-2009-4510: TANDBERG VCS Static SSH Host Keys
2010-04-14 00:00:00
TANDBERG Video Communication Server multiple security vulnerabilities
2010-04-14 00:00:00
CVE-2009-4509: TANDBERG VCS Authentication Bypass
2010-04-14 00:00:00
nessus
nessus
TANDBERG Video Communication Server Static SSH Host Keys
2010-04-14 00:00:00
openvas
openvas
Known SSH Host Key
2016-01-05 00:00:00
6.7 Medium
AI Score
Confidence
Low
8.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:S/C:C/I:C/A:C
0.002 Low
EPSS
Percentile
51.6%
Related for CVE-2009-4510