Lucene search

PRIOn knowledge basePRION:CVE-2007-0726

HistoryMar 13, 2007 - 10:19 p.m.

Code injection

2007-03-1322:19:00

PRIOn knowledge base

www.prio-n.com

6.6 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.033 Low

EPSS

Percentile

91.1%

JSON

The SSH key generation process in OpenSSH in Apple Mac OS X 10.3.9 and 10.4 through 10.4.8 allows remote attackers to cause a denial of service by connecting to the server before SSH has finished creating keys, which causes the keys to be regenerated and can break trust relationships that were based on the original keys.

CPENameOperatorVersion
mac_os_xeq10.4.3
mac_os_xeq10.4.1
mac_os_xeq10.4.7
mac_os_xeq10.4.4
mac_os_xeq10.4
mac_os_xeq10.4.6
mac_os_xeq10.4.5
mac_os_xeq10.3.9
mac_os_xeq10.4.8
mac_os_xeq10.4.2

Name	Operator	Version
mac_os_x	eq	10.4.3
mac_os_x	eq	10.4.1
mac_os_x	eq	10.4.7
mac_os_x	eq	10.4.4
mac_os_x	eq	10.4
mac_os_x	eq	10.4.6
mac_os_x	eq	10.4.5
mac_os_x	eq	10.3.9
mac_os_x	eq	10.4.8
mac_os_x	eq	10.4.2

Rows per page:

1-10 of 201

References

docs.info.apple.com/article.html?artnum=305214

lists.apple.com/archives/security-announce/2007/Mar/msg00002.html

secunia.com/advisories/24479

www.osvdb.org/34850

www.securityfocus.com/bid/22948

www.securitytracker.com/id?1017756

www.us-cert.gov/cas/techalerts/TA07-072A.html

www.vupen.com/english/advisories/2007/0930

exchange.xforce.ibmcloud.com/vulnerabilities/32975

6.6 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.033 Low

EPSS

Percentile

91.1%

JSON

Related for PRION:CVE-2007-0726