Lucene search
K

6 matches found

Tenable Nessus
Tenable Nessus
added 2011/08/29 12:0 a.m.3635 views

SunSSH < 1.1.1 / 1.3 CBC Plaintext Disclosure

The version of SunSSH running on the remote host has an information disclosure vulnerability. A design flaw in the SSH specification could allow a man-in-the-middle attacker to recover up to 32 bits of plaintext from an SSH-protected connection in the standard configuration. An attacker could...

10CVSS7.1AI score0.76751EPSS
Exploits31References51
securityvulns
securityvulns
added 2006/11/14 12:0 a.m.84 views

VMSA-2006-0008 - VMware ESX Server 2.0.2 Upgrade Patch 2

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 - - ------------------------------------------------------------------- VMware Security Advisory Advisory ID: VMSA-2006-0008 Synopsis: VMware ESX Server 2.0.2 Upgrade Patch 2 Patch URL: http://www.vmware.com/download/esx/esx-202-200610-patch.html...

7.5CVSS7.6AI score0.05503EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2006/07/03 12:0 a.m.37 views

CentOS 3 : openssh (CESA-2005:550)

Updated openssh packages that fix a potential security vulnerability and various other bugs are now available. This update has been rated as having low security impact by the Red Hat Security Response Team. OpenSSH is OpenBSD's SSH Secure SHell protocol implementation. This includes the core file...

5CVSS7.3AI score0.03366EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2005/10/05 12:0 a.m.34 views

RHEL 3 : openssh (RHSA-2005:550)

Updated openssh packages that fix a potential security vulnerability and various other bugs are now available. This update has been rated as having low security impact by the Red Hat Security Response Team. OpenSSH is OpenBSD's SSH Secure SHell protocol implementation. This includes the core file...

5CVSS7.3AI score0.03366EPSS
Exploits0References3
CVE
CVE
added 2005/05/05 4:0 a.m.127 views

CVE-2004-2069

OpenSSH CVE-2004-2069 affects sshd (OpenSSH 3.6.1p2, 3.7.1p2 and possibly other versions) when privilege separation is enabled. The issue is that the non-privileged process is not properly signaled after a session ends once LoginGraceTime has been exceeded, leaving the connection open and enablin...

5CVSS9.2AI score0.03366EPSS
Exploits0References23Affected Software1
NVD
NVD
added 2004/12/31 5:0 a.m.22 views

CVE-2004-2069

sshd.c in OpenSSH 3.6.1p2 and 3.7.1p2 and possibly other versions, when using privilege separation, does not properly signal the non-privileged process when a session has been terminated after exceeding the LoginGraceTime setting, which leaves the connection open and allows remote attackers to...

5CVSS6.5AI score0.03366EPSS
Exploits0References23
Rows per page
Query Builder