9267 matches found
DSA-316-2 slashem - buffer overflow
Bulletin has no description...
DSA-136-3 openssl - multiple remote exploits
Bulletin has no description...
OpenSSH fails to properly apply source IP based access control restrictions
Overview OpenSSH is an implementation of the Secure Shell protocol. A user may be able to bypass the IP based access control restriction feature specified in a key when two keys of varying types are specified. Description Versions of OpenSSH between 2.5.x - 2.9.x may fail to enforce the IP based...
OpenSSH Security Advisory (adv.option)
Weakness in OpenSSH's source IP based access control for SSH protocol v2 public key authentication. 1. Systems affected: Versions of OpenSSH between 2.5.x and 2.9.x using the 'from=' key file option in combination with both RSA and DSA keys in /.ssh/authorizedkeys2. 2. Description: Depending on t...
CVE-2001-0572
The SSH protocols 1 and 2 aka SSH-2 as implemented in OpenSSH and other packages have various weaknesses which can allow a remote attacker to obtain the following information via sniffing: 1 password lengths or ranges of lengths, which simplifies brute force password guessing, 2 whether RSA or DS...
CVE-2001-0572
CVE-2001-0572 concerns the SSH protocols 1 and 2 as implemented in OpenSSH and other packages. The connected documents confirm concrete details: the issue enables a remote attacker to sniff and disclose information such as password lengths, the authentication method (RSA/DSA), the number of autho...
PT-2009-6710 · Openssl +1 · Openssl +1
Name of the Vulnerable Software and Affected Versions: OpenSSL versions 0.9.8i and earlier Description: The issue allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature for DSA and ECDSA keys. Exploitation of this issue can lead to a violation of...