OpenSSH < 4.2p1 GSSAPI Authentication Credential Escalation

Binary data 3205.prm...

PT-2005-3678 · Openssh +2 · Openssh +2

Name of the Vulnerable Software and Affected Versions: OpenSSH versions prior to 4.2 Description: The issue allows GSSAPI credentials to be delegated to clients who log in using non-GSSAPI methods when GSSAPIDelegateCredentials is enabled. This could cause those credentials to be exposed to...

Few OpenSSH vulnerabilities

GatewayPorts option can be incorrectly activated during dynamic port forwarding if no external interface is specified. If GSSAPIDelegateCredentials option is activated user who used different logon type can be delegated with GSSAPI credentials...

OpenSSH Two Security Issues

Secunia Advisory: SA16686 Release Date: 2005-09-02 Critical: Less critical Impact: Security Bypass Privilege escalation Where: From remote Solution Status: Vendor Patch Software: OpenSSH 3.x OpenSSH 4.x Select a product and view a complete list of all Patched/Unpatched Secunia advisories affectin...

Дырка в fetchmail &#40;buffer overflow&#41;

Ошибка в AUTHENTICATE GSSAPI, переполнение буфера при разборе заголовков. Ошибки при разборе индексов писем выход за пределы массива...

Critical: Red Hat Security Advisory: : Updated Kerberos 5 packages available

Updated Kerberos 5 packages are now available for Red Hat Linux 6.2, 7, and 7.1. These updates close a potential vulnerability present in the gssapi-aware ftpd included in the krb5-workstation package. By use of a carefully-crafted authentication request, a malicious client could exploit a...

Дырки в mutt &#40;format string, GSSAPI&#41;

Ошибки форматной строки при работе с сервером imap...

[RHSA-2001:029-02] New mutt packages fix IMAP vulnerability/incompatibility

--------------------------------------------------------------------- Red Hat, Inc. Red Hat Security Advisory Synopsis: New mutt packages fix IMAP vulnerability/incompatibility Advisory ID: RHSA-2001:029-02 Issue date: 2001-03-09 Updated on: 2001-03-13 Product: Red Hat Linux Keywords: mutt IMAP...

CVE-2001-0101

Vulnerability in fetchmail 5.5.0-2 and earlier in the AUTHENTICATE GSSAPI command...

CVE-2001-0101

Vulnerability in fetchmail 5.5.0-2 and earlier in the AUTHENTICATE GSSAPI command...

CVE-2001-0101

CVE-2001-0101 affects fetchmail 5.5.0-2 and earlier, with vulnerability in the AUTHENTICATE GSSAPI command. The available connected records confirm the affected software and the vulnerable component, but do not provide further technical details on root cause, impact specifics beyond what NVD list...