Lucene search
K

6 matches found

Tenable Nessus
Tenable Nessus
added 2011/08/29 12:0 a.m.3637 views

SunSSH < 1.1.1 / 1.3 CBC Plaintext Disclosure

The version of SunSSH running on the remote host has an information disclosure vulnerability. A design flaw in the SSH specification could allow a man-in-the-middle attacker to recover up to 32 bits of plaintext from an SSH-protected connection in the standard configuration. An attacker could...

10CVSS7.1AI score0.76751EPSS
Exploits31References51
Tenable Nessus
Tenable Nessus
added 2006/01/15 12:0 a.m.37 views

MDKSA-2005:172 : openssh

Sshd in OpenSSH before 4.2, when GSSAPIDelegateCredentials is enabled, allows GSSAPI credentials to be delegated to clients who log in using non-GSSAPI methods, which could cause those credentials to be exposed to untrusted users or hosts. GSSAPI is only enabled in versions of openssh shipped in...

8.5AI score0.02299EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2005/10/11 12:0 a.m.38 views

RHEL 4 : openssh (RHSA-2005:527)

The remote Redhat Enterprise Linux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2005:527 advisory. OpenSSH is OpenBSD's SSH Secure SHell protocol implementation. An error in the way OpenSSH handled GSSAPI credential delegation was discovere...

6.9CVSS7.6AI score0.02299EPSS
Exploits1References7
Tenable Nessus
Tenable Nessus
added 2005/09/17 12:0 a.m.56 views

Fedora Core 3 : openssh-3.9p1-8.0.3 (2005-858)

This security update fixes CVE-2005-2798 and resolves a problem with X forwarding binding only on IPv6 address on certain circumstances. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to...

5CVSS7.6AI score0.02299EPSS
Exploits0References1
Cvelist
Cvelist
added 2005/09/06 4:0 a.m.22 views

CVE-2005-2798

sshd in OpenSSH before 4.2, when GSSAPIDelegateCredentials is enabled, allows GSSAPI credentials to be delegated to clients who log in using non-GSSAPI methods, which could cause those credentials to be exposed to untrusted users or hosts...

9.2AI score0.02299EPSS
Exploits0References25
CVE
CVE
added 2005/09/06 4:0 a.m.196 views

CVE-2005-2798

Technical details about CVE-2005-2798 are not publicly available in the provided connected documents. No product/version specifics, impact details, or fixes are enumerated here. Monitor for official updates from vendors or security advisories.

5CVSS9.2AI score0.02299EPSS
Exploits0References25Affected Software1
Rows per page
Query Builder