3 matches found
CVE-2009-4510
The SSH service on the TANDBERG Video Communication Server VCS before X5.1 uses a fixed DSA key, which makes it easier for remote attackers to conduct man-in-the-middle attacks and spoof arbitrary servers via crafted SSH packets...
CVE-2009-4510: TANDBERG VCS Static SSH Host Keys
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Virtual Security Research, LLC. http://www.vsecurity.com/ Security Advisory - -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Advisory Name: TANDBERG Video Communication Server Static SSH Host Keys Release Date:...
CVE-2009-4510
The CVE-2009-4510 issue affects TANDBERG Video Communication Server (VCS) firmware where SSH services ship with a fixed DSA host key prior to X5.1. This hard-coded key enables remote attackers to perform server impersonation and man-in-the-middle attacks on SSH connections, potentially yielding s...