2247 matches found
[SECURITY] Fedora Core 5 Update: openssh-4.3p2-4.12.fc5
SSH Secure SHell is a program for logging into and executing commands on a remote machine. SSH is intended to replace rlogin and rsh, and to provide secure encrypted communications between two untrusted hosts over an insecure network. X11 connections and arbitrary TCP/IP ports can also be forward...
GLSA-200703-13 : SSH Communications Security's Secure Shell Server: SFTP privilege escalation
The remote host is affected by the vulnerability described in GLSA-200703-13 SSH Communications Security's Secure Shell Server: SFTP privilege escalation The SSH Secure Shell Server contains a format string vulnerability in the SFTP code that handles file transfers scp2 and sftp2. In some...
Georgia SoftWorks Secure Shell Server 7.1.3 - Multiple Remote Code Execution Vulnerabilities
source: https://www.securityfocus.com/bid/27103/info Georgia SoftWorks Secure Shell Server is prone to multiple remote code-execution vulnerabilities: - A format-string vulnerability - Two buffer-overflow vulnerabilities. Successfully exploiting these issues allows remote attackers to execute...
DSA-1189-1 openssh-krb5
Bulletin has no description...
unsafe GSSAPI signal handler
Signal handler race condition in OpenSSH before 4.4 allows remote attackers to cause a denial of service crash, and possibly execute arbitrary code if GSSAPI authentication is enabled, via unspecified vectors that lead to a double-free...
VulnCheck KEV: CVE-2004-1464
Cisco IOS contains an unspecified vulnerability that may block further telnet, reverse telnet, Remote Shell RSH, Secure Shell SSH, and in some cases, Hypertext Transport Protocol HTTP access to the Cisco device...
security flaw
Unspecified vulnerability in the SSH dissector in Wireshark aka Ethereal 0.9.10 to 0.99.0 allows remote attackers to cause a denial of service infinite loop via unknown attack vectors...
DEBIAN-CVE-2006-3631
Unspecified vulnerability in the SSH dissector in Wireshark aka Ethereal 0.9.10 to 0.99.0 allows remote attackers to cause a denial of service infinite loop via unknown attack vectors...
HP-UX PHSS_34566 : HP-UX Secure Shell Remote Denial of Service (DoS) (HPSBUX02090 SSRT051058 rev.2)
s700800 11.04 Virtualvault 4.7 OpenSSH update : A potential security vulnerability has been identified with HP-UX running Secure Shell. The vulnerability could be remotely exploited to allow a remote unauthorized user to create a Denial of Service DoS. %NASLMINLEVEL 70300 C Tenable Network...
HP-UX PHSS_34567 : HP-UX Secure Shell Remote Denial of Service (DoS) (HPSBUX02090 SSRT051058 rev.2)
s700800 11.04 Virtualvault 4.6 OpenSSH update : A potential security vulnerability has been identified with HP-UX running Secure Shell. The vulnerability could be remotely exploited to allow a remote unauthorized user to create a Denial of Service DoS. %NASLMINLEVEL 70300 C Tenable Network...
HP-UX Secure Shell DoS
No description provided...
[security bulletin] HPSBUX02090 SSRT051058 rev.2 - HP-UX Secure Shell Remote Denial of Service (DoS)
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c00589050 Version: 2 HPSBUX02090 SSRT051058 rev.2 - HP-UX Secure Shell Remote Denial of Service DoS NOTICE: The information in this Security Bulletin should be acted upon as soon as possible...
PT-2006-1929 · Freebsd +1 · Openam +2
Name of the Vulnerable Software and Affected Versions: OpenSSH on FreeBSD versions 5.3 through 5.4 Description: The issue arises when OpenSSH on FreeBSD is used with OpenPAM and a forked child process terminates during PAM authentication. This allows remote attackers to cause a denial of service ...
[SECURITY] [DSA 956-1] New lsh-utils packages fix local vulnerabilities
-------------------------------------------------------------------------- Debian Security Advisory DSA 956-1 [email protected] http://www.debian.org/security/ Martin Schulze January 26th, 2006 http://www.debian.org/security/faq -...
Insufficiently Protected Credentials
Overview Affected versions of this package are vulnerable to Insufficiently Protected Credentials. SSH, as implemented in OpenSSH before 4.0 and possibly other implementations, stores hostnames, IP addresses, and keys in plaintext in the knownhosts file, which makes it easier for an attacker that...
PT-2005-3554 · Openssh +2 · Openssh +2
Name of the Vulnerable Software and Affected Versions: OpenSSH versions prior to 4.0 Description: The issue allows an attacker that has compromised an SSH user's account to more easily generate a list of additional targets that are more likely to have the same password or key. This is because...
CVE-2005-2146
The CVE concerns SSH Tectia Server (Windows) 4.3.1 and earlier, and SSH Secure Shell for Windows Servers, which generate the host key with insecure permissions. This allows a local user to read the private host key and spoof the server, enabling impersonation. Evidence from multiple sources confi...
CVE-2005-2146
SSH Tectia Server 4.3.1 and earlier, and SSH Secure Shell for Windows Servers, uses insecure permissions when generating the Secure Shell host identification key, which allows local users to access the key and spoof the server...
openssh security update
CentOS Errata and Security Advisory CESA-2005:481-01 Updated openssh packages that fix a potential security vulnerability and various other bugs are now available for Red Hat Enterprise Linux 2.1. This update has been rated as having low security impact by the Red Hat Security Response Team...
Low: Red Hat Security Advisory: openssh security update
Updated openssh packages that fix a potential security vulnerability and various other bugs are now available for Red Hat Enterprise Linux 2.1. This update has been rated as having low security impact by the Red Hat Security Response Team. OpenSSH is OpenBSD's SSH Secure SHell protocol...