6 matches found
SunSSH < 1.1.1 / 1.3 CBC Plaintext Disclosure
The version of SunSSH running on the remote host has an information disclosure vulnerability. A design flaw in the SSH specification could allow a man-in-the-middle attacker to recover up to 32 bits of plaintext from an SSH-protected connection in the standard configuration. An attacker could...
VMSA-2006-0008 - VMware ESX Server 2.0.2 Upgrade Patch 2
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 - - ------------------------------------------------------------------- VMware Security Advisory Advisory ID: VMSA-2006-0008 Synopsis: VMware ESX Server 2.0.2 Upgrade Patch 2 Patch URL: http://www.vmware.com/download/esx/esx-202-200610-patch.html...
CentOS 3 : openssh (CESA-2005:550)
Updated openssh packages that fix a potential security vulnerability and various other bugs are now available. This update has been rated as having low security impact by the Red Hat Security Response Team. OpenSSH is OpenBSD's SSH Secure SHell protocol implementation. This includes the core file...
RHEL 3 : openssh (RHSA-2005:550)
Updated openssh packages that fix a potential security vulnerability and various other bugs are now available. This update has been rated as having low security impact by the Red Hat Security Response Team. OpenSSH is OpenBSD's SSH Secure SHell protocol implementation. This includes the core file...
CVE-2004-2069
OpenSSH CVE-2004-2069 affects sshd (OpenSSH 3.6.1p2, 3.7.1p2 and possibly other versions) when privilege separation is enabled. The issue is that the non-privileged process is not properly signaled after a session ends once LoginGraceTime has been exceeded, leaving the connection open and enablin...
CVE-2004-2069
sshd.c in OpenSSH 3.6.1p2 and 3.7.1p2 and possibly other versions, when using privilege separation, does not properly signal the non-privileged process when a session has been terminated after exceeding the LoginGraceTime setting, which leaves the connection open and allows remote attackers to...