29 matches found
K6736: OpenSSH vulnerabilities CAN-2006-5051, CAN-2006-4924
Security Advisory Description Note : For information about signing up to receive security notice updates from F5, refer to K9970: Subscribe to email notifications regarding F5 products and security announcements. Note : Versions that are not listed in this article have not been evaluated for...
NewStart CGSL CORE 5.04 / MAIN 5.04 : openssh Multiple Vulnerabilities (NS-SA-2019-0036)
The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has openssh packages installed that are affected by multiple vulnerabilities: - scp in OpenSSH 4.2p1 allows attackers to execute arbitrary commands via filenames that contain shell metacharacters or spaces, which are expanded...
Solaris 10 (sparc) : 123324-03
SunOS 5.10: sshd patch. Date this patch was last updated by Sun : Jun/20/07 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if description...
F5 Networks BIG-IP : OpenSSH vulnerabilities (SOL6736)
The remote BIG-IP device is missing a patch required by a security advisory. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from F5 Networks BIG-IP Solution SOL6736. The text description of this plugin is C F5 Networks...
Oracle Linux 4 : openssh (ELSA-2006-0697)
From Red Hat Security Advisory 2006:0697 : Updated openssh packages that fix two security flaws are now available for Red Hat Enterprise Linux 3 and 4. This update has been rated as having important security impact by the Red Hat Security Response Team. OpenSSH is OpenBSD's SSH Secure SHell...
Slackware: Security Advisory (SSA:2006-272-02)
The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SunSSH < 1.1.1 / 1.3 CBC Plaintext Disclosure
The version of SunSSH running on the remote host has an information disclosure vulnerability. A design flaw in the SSH specification could allow a man-in-the-middle attacker to recover up to 32 bits of plaintext from an SSH-protected connection in the standard configuration. An attacker could...
SLES9: Security update for OpenSSH
The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: openssh openssh-askpass For more information, please visit the referenced security advisories. More details may also be found by searching for keyword 501950...
Gentoo Security Advisory GLSA 200609-17 (openssh)
The remote host is missing updates announced in advisory GLSA 200609-17. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
FreeBSD Security Advisory (FreeBSD-SA-06:22.openssh.asc)
The remote host is missing an update to the system as announced in the referenced advisory FreeBSD-SA-06:22.openssh.asc ADV FreeBSD-SA-06:22.openssh.asc OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008...
Debian: Security Advisory (DSA-1189-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian Security Advisory DSA 1212-1 (openssh (1:3.8.1p1-8.sarge.6))
The remote host is missing an update to openssh 1:3.8.1p1-8.sarge.6 announced via advisory DSA 1212-1. Two denial of service vulnerabilities have been found in the OpenSSH server. CVE-2006-4924 The sshd support for ssh protcol version 1 does not properly handle duplicate incoming blocks. This cou...
Debian Security Advisory DSA 1189-1 (openssh-krb5)
The remote host is missing an update to openssh-krb5 announced via advisory DSA 1189-1. Several remote vulnerabilities have been discovered in OpenSSH, a free implementation of the Secure Shell protocol, which may lead to denial of service and potentially the execution of arbitrary code. The Comm...
SuSE 10 Security Update : OpenSSH (ZYPP Patch Number 2184)
Several security problems were fixed in OpenSSH : - A denial of service problem has been fixed in OpenSSH which could be used to cause lots of CPU consumption on a remote openssh server. CVE-2006-4924 - If a remote attacker is able to inject network traffic this could be used to cause a client...
Ubuntu 5.04 / 5.10 / 6.06 LTS : openssh vulnerabilities (USN-355-1)
Tavis Ormandy discovered that the SSH daemon did not properly handle authentication packets with duplicated blocks. By sending specially crafted packets, a remote attacker could exploit this to cause the ssh daemon to drain all available CPU resources until the login grace time expired...
openSUSE 10 Security Update : openssh (openssh-2183)
Several security problems were fixed in OpenSSH : - CVE-2006-4924: A denial of service problem has been fixed in OpenSSH which could be used to cause lots of CPU consumption on a remote openssh server. - CVE-2006-4925: If a remote attacker is able to inject network traffic this could be used to...
Solaris 10 (sparc) : 123324-03
SunOS 5.10: sshd patch. Date this patch was last updated by Sun : Jun/20/07 %NASLMINLEVEL 70300 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a recommended security fix. Disabled on 2011/10/24. C Tenable Network Security, Inc. if ! definedfunc"bnrandom"...
Solaris 10 (x86) : 123325-03
SunOS 5.10x86: sshd patch. Date this patch was last updated by Sun : Jun/21/07 %NASLMINLEVEL 70300 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a recommended security fix. Disabled on 2011/10/24. C Tenable Network Security, Inc. if ! definedfunc"bnrandom"...
Important openssh security update
3.9p1-8.RHEL4.17 - CVE-2006-5051 don't call cleanups from signal handler 208347 3.9p1-8.RHEL4.16 - CVE-2006-4924 prevent DoS on deattack detector code 207955...
Debian DSA-1212-1 : openssh - Denial of service
Two denial of service problems have been found in the OpenSSH server. The Common Vulnerabilities and Exposures project identifies the following vulnerabilities : - CVE-2006-4924 The sshd support for ssh protocol version 1 does not properly handle duplicate incoming blocks. This could allow a remo...