CVE-2002-2328

Active Directory in Windows 2000, when supporting Kerberos V authentication and GSSAPI, allows remote attackers to cause a denial of service hang via an LDAP client that sets the page length to zero during a large request...

openSUSE 10 Security Update : openssh (openssh-2183)

Several security problems were fixed in OpenSSH : - CVE-2006-4924: A denial of service problem has been fixed in OpenSSH which could be used to cause lots of CPU consumption on a remote openssh server. - CVE-2006-4925: If a remote attacker is able to inject network traffic this could be used to...

krb5 RPC library unitialized pointer free

The gssrpcsvcauthgssapi function in the RPC library in MIT Kerberos 5 krb5 1.6.1 and earlier might allow remote attackers to execute arbitrary code via a zero-length RPC credential, which causes kadmind to free an uninitialized pointer during cleanup...

SOL5860 - GSSAPI authentication vulnerability in OpenSSH - CAN-2005-2798

CAN-2005-2798: GSSAPI authentication vulnerability in OpenSSH Information about this advisory is available at the following location:...

Mandrake Linux Security Advisory : krb5 (MDKSA-2007:077-1)

A vulnerability was found in the username handling of the MIT krb5 telnet daemon. A remote attacker that could access the telnet port of a target machine could login as root without requiring a password CVE-2007-0956. Buffer overflows in the kadmin server daemon were discovered that could be...

krb5 security update

CentOS Errata and Security Advisory CESA-2007:0095-01 Updated krb5 packages that fix a number of issues are now available. This update has been rated as having critical security impact by the Red Hat Security Response Team. Kerberos is a network authentication system which allows clients and...

krb5 security update

CentOS Errata and Security Advisory CESA-2007:0095 Updated krb5 packages that fix a number of issues are now available. This update has been rated as having critical security impact by the Red Hat Security Response Team. Kerberos is a network authentication system which allows clients and servers...

SUSE-SA:2006:062: openssh

The remote host is missing the patch for the advisory SUSE-SA:2006:062 openssh. Several security problems were fixed in OpenSSH 4.4 and the bug fixes were back ported to the openssh versions in our products. - CVE-2006-4924: A denial of service problem has been fixed in OpenSSH which could be use...

Novell NetMail IMAP AUTHENTICATE Buffer Overflow

This module exploits a stack buffer overflow in Novell's NetMail 3.52 IMAP AUTHENTICATE GSSAPI command. By sending an overly long string, an attacker can overwrite the buffer and control program execution. Using the PAYLOAD of windows/shellbindtcp or windows/shellreversetcp allows for the most...

Fedora Core 5 : openssh-4.3p2-4.10 (2006-1011)

Mon Oct 2 2006 Tomas Mraz - 4.3p2-4.10 - improve gssapi-no-spnego patch 208102 - CVE-2006-4924 - prevent DoS on deattack detector 207957 - CVE-2006-5051 - don't call cleanups from signal handler 208459 - Wed Sep 13 2006 Tomas Mraz - 4.3p2-4.1 - sync with FC6 version - build for FC5 - Wed Aug 23...

SOL6876 - OpenSSH vulnerabilities CVE-2006-5052

This security advisory describes an OpenSSH vulnerability. OpenSSH versions previous to version 4.4, on platforms with GSSAPI enabled, allow remote attackers to determine the validity of usernames through a Generic Security Services Application Program Interface GSSAPI authentication abort...

GLSA-200611-06 : OpenSSH: Multiple Denial of Service vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200611-06 OpenSSH: Multiple Denial of Service vulnerabilities Tavis Ormandy of the Google Security Team has discovered a pre-authentication vulnerability, causing sshd to spin until the login grace time has been expired. Mark Dowd...

OpenSSH: Multiple Denial of Service vulnerabilities

Background OpenSSH is a complete SSH protocol version 1.3, 1.5 and 2.0 implementation and includes sftp client and server support. Description Tavis Ormandy of the Google Security Team has discovered a pre-authentication vulnerability, causing sshd to spin until the login grace time has been...

可移植OpenSSH GSSAPI认证终止信息泄露漏洞

OpenSSH是一种开放源码的SSH协议的实现，初始版本用于OpenBSD平台，现在已经被移植到多种Unix/Linux类操作系统下。 在可移植的OpenSSH上，远程攻击者可以通过终止GSSAPI认证来判断用户名是否有效。 OpenSSH OpenSSH 4.4 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载： ftp://ftp.openbsd.org/pub/OpenBSD/OpenSSH/portable/openssh-4.4p1.tar.gz...

OpenSSH 4.4 is available

OpenSSH 4.4 has just been released. It will be available from the mirrors listed at http://www.openssh.com/ shortly. OpenSSH is a 100 complete SSH protocol version 1.3, 1.5 and 2.0 implementation and includes sftp client and server support. Once again, we would like to thank the OpenSSH community...

OpenBSD Portable OpenSSH < 4.4.p1 GSSAPI Authentication Overflow

Binary data 3754.prm...

OpenSSH < 4.4 Multiple Vulnerabilities

According to its banner, the version of OpenSSH installed on the remote host is affected by multiple vulnerabilities : - A race condition exists that may allow an unauthenticated, remote attacker to crash the service or, on portable OpenSSH, possibly execute code on the affected host. Note that...

CVE-2006-5051

Signal handler race condition in OpenSSH before 4.4 allows remote attackers to cause a denial of service crash, and possibly execute arbitrary code if GSSAPI authentication is enabled, via unspecified vectors that lead to a double-free...

DEBIAN-CVE-2006-5052

Unspecified vulnerability in portable OpenSSH before 4.4, when running on some platforms, allows remote attackers to determine the validity of usernames via unknown vectors involving a GSSAPI "authentication abort."...

CVE-2006-5051

Signal handler race condition in OpenSSH before 4.4 allows remote attackers to cause a denial of service crash, and possibly execute arbitrary code if GSSAPI authentication is enabled, via unspecified vectors that lead to a double-free...