DEBIAN-CVE-2011-0766

The random number generator in the Crypto application before 2.0.2.2, and SSH before 2.0.5, as used in the Erlang/OTP ssh library before R14B03, uses predictable seeds based on the current time, which makes it easier for remote attackers to guess DSA host and SSH session keys...

PT-2011-2617 · Ericsson · Erlang/Otp

Name of the Vulnerable Software and Affected Versions: Crypto application versions prior to 2.0.2.2 SSH versions prior to 2.0.5 Erlang/OTP ssh library versions prior to R14B03 Description: The random number generator uses predictable seeds based on the current time, making it easier for remote...

DEBIAN-CVE-2011-0539

The keycertify function in usr.bin/ssh/key.c in OpenSSH 5.6 and 5.7, when generating legacy certificates using the -t command-line option in ssh-keygen, does not initialize the nonce field, which might allow remote attackers to obtain sensitive stack memory contents or make it easier to conduct...

PT-2011-2432

Name of the Vulnerable Software and Affected Versions OpenSSH versions 5.6 through 5.7 Description The issue is related to the key certify function in OpenSSH, specifically when generating legacy certificates using the -t command-line option in ssh-keygen. This function does not initialize the...

Metasploit 3.5.1 adds Cisco device exploitation !

Metasploit now enables security professionals to exploit Cisco devices, performs passive reconnaissance through traffic analysis, provides more exploits and evaluates an organization's password security by brute forcing an ever increasing range of services. This latest release adds stealth...

Novell NetWare OpenSSH Buffer Overflow

The Secure Shell SSH protocol is a well-established method of secure communication in a client and server architectural model. SSH is based on the idea of a public key exchange, where a server offers a client its public key. The client then uses this key to encrypt all communication between the t...

Cisco IOS Secure Shell Denial of Service Vulnerabilities - Cisco Systems

The Secure Shell server SSH implementation in Cisco IOS contains multiple vulnerabilities that allow unauthenticated users the ability to generate a spurious memory access error or, in certain cases, reload the device. The IOS SSH server is an optional service that is disabled by default, but its...

Vulnerabilities in Cisco IOS Secure Shell Server - Cisco Systems

Certain release trains of Cisco Internetwork Operating System IOS, when configured to use the IOS Secure Shell SSH server in combination with Terminal Access Controller Access Control System Plus TACACS+ as a means to perform remote management tasks on IOS devices, may contain two vulnerabilities...

Multiple SSH Vulnerabilities - Cisco Systems

Four different Cisco product lines are susceptible to multiple vulnerabilities discovered in the Secure Shell SSH protocol version 1.5. These issues have been addressed, and fixes have been integrated into the Cisco products that support this protocol. By exploiting the weakness in the SSH...

Sysax Multi Server "open", "unlink", "mkdir", "scp_get" Commands DoS Vulnerabilities

Title: Sysax Multi ServerSFTP module "open", "unlink", "mkdir", "scpget" Commands DoS Vulnerabilities Product: Sysax Multi Server Vendor: Codeorigin, LLC Version: 5.25 earlier versions may also be affected Platform: Windows Type of Vulnerability: Buffer overflow --DoS Risk rating: Medium Date of...

Sysax Multi Server (SFTP module) Multiple Commands DoS Vulnerabilities

Exploit for windows platform in category dos / poc ====================================================================== Sysax Multi Server SFTP module Multiple Commands DoS Vulnerabilities ====================================================================== Title: Sysax Multi ServerSFTP modul...

Fedora Update for openssh FEDORA-2010-5429

Check for the Version of openssh OpenVAS Vulnerability Test Fedora Update for openssh FEDORA-2010-5429 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

IT-Grundschutz M5.064: Secure Shell

IT-Grundschutz M5.064: Secure Shell. ACHTUNG: Dieser Test wird nicht mehr unterstützt. Er wurde ersetzt durch den entsprechenden Test der nun permanent and die aktuelle EL angepasst wird: OID 1.3.6.1.4.1.25623.1.0.95065 Diese Prüfung bezieht sich auf die 10. Ergänzungslieferung 10. EL des IT-...

IT-Grundschutz M5.064: Secure Shell

IT-Grundschutz M5.064: Secure Shell. ACHTUNG: Dieser Test wird nicht mehr unterstützt. Er wurde ersetzt durch den entsprechenden Test der nun permanent and die aktuelle EL angepasst wird: OID 1.3.6.1.4.1.25623.1.0.95065 Diese Prüfung bezieht sich auf die 11. Ergänzungslieferung 11. EL des IT-...

IT-Grundschutz M5.064: Secure Shell

IT-Grundschutz M5.064: Secure Shell. ACHTUNG: Dieser Test wird nicht mehr unterstützt. Er wurde ersetzt durch den entsprechenden Test der nun permanent and die aktuelle EL angepasst wird: OID 1.3.6.1.4.1.25623.1.0.95065 Diese Prüfung bezieht sich auf die 10. Ergänzungslieferung 10. EL des IT-...

IT-Grundschutz M5.064: Secure Shell

IT-Grundschutz M5.064: Secure Shell. ACHTUNG: Dieser Test wird nicht mehr unterstützt. Er wurde ersetzt durch den entsprechenden Test der nun permanent and die aktuelle EL angepasst wird: OID 1.3.6.1.4.1.25623.1.0.95065 Diese Prüfung bezieht sich auf die 11. Ergänzungslieferung 11. EL des IT-...

OpenSSH sshd Identical Blocks Denial of Service (CVE-2006-4924)

The Secure Shell SSH protocol is a well-established method of secure communication in a client and server architectural model. The protocol was developed and implemented as an alternative to the older remote connection programs, such as telnet, rsh and rlogin, which offer limited to no security...

HP-UX Update for HP Secure Shell HPSBUX02287

Check for the Version of HP Secure Shell OpenVAS Vulnerability Test HP-UX Update for HP Secure Shell HPSBUX02287 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...

HP-UX Update for HP-UX Secure Shell HPSBUX02337

Check for the Version of HP-UX Secure Shell OpenVAS Vulnerability Test HP-UX Update for HP-UX Secure Shell HPSBUX02337 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify...

HP-UX Update for T1471AA Secure Shell HPSBUX00282

Check for the Version of T1471AA Secure Shell OpenVAS Vulnerability Test HP-UX Update for T1471AA Secure Shell HPSBUX00282 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or...