Lucene search
K

92 matches found

OpenVAS
OpenVAS
added 2016/05/04 12:0 a.m.520 views

Juniper Networks Junos OS OpenSSH Information Leak and Buffer Overflow Vulnerability

Junos OS is prone to an information leak and buffer overflow vulnerability in the OpenSSH client. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-on...

8.1CVSS7.3AI score0.63468EPSS
Exploits3References1
Tenable Nessus
Tenable Nessus
added 2016/03/10 12:0 a.m.32 views

OracleVM 2.2 : openssh (OVMSA-2016-0033)

The remote OracleVM system is missing necessary patches to address critical security updates : - change default value of MaxStartups - CVE-2010-5107 John Haxby %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The package checks in this plugin were extracted from OracleVM Security Advisory...

7.5CVSS6.6AI score0.1651EPSS
Exploits1References2
Fedora
Fedora
added 2016/01/17 6:52 p.m.45 views

[SECURITY] Fedora 22 Update: openssh-6.9p1-10.fc22

SSH Secure SHell is a program for logging into and executing commands on a remote machine. SSH is intended to replace rlogin and rsh, and to provide secure encrypted communications between two untrusted hosts over an insecure network. X11 connections and arbitrary TCP/IP ports can also be forward...

6.5CVSS2AI score0.63468EPSS
Exploits2
OpenVAS
OpenVAS
added 2015/10/15 12:0 a.m.42 views

Mageia: Security Advisory (MGASA-2015-0295)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.5CVSS6.1AI score0.09302EPSS
Exploits1References4
Amazon
Amazon
added 2015/09/02 12:0 a.m.52 views

Medium: openssh

Issue Overview: The monitor component in sshd in OpenSSH before 7.0 on non-OpenBSD platforms accepts extraneous username data in MONITORREQPAMINITCTX requests, which allows local users to conduct impersonation attacks by leveraging any SSH login access in conjunction with control of the sshd uid ...

6.9CVSS6.8AI score0.00599EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2015/04/28 12:0 a.m.5 views

Vulnerabilities of the Red Hat Linux operating system, which allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information

The multiple vulnerabilities in the openssh-server-3.4p1 package of the Red Hat Linux operating system can be exploited, leading to breaches of the confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited remotely...

10CVSS7.4AI score0.09893EPSS
Exploits2References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2015/04/28 12:0 a.m.4 views

Vulnerabilities of the Red Hat Linux operating system, which allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information

The multiple vulnerabilities in the openssh-server-3.1p1 package of the Red Hat Linux operating system may lead to breaches of the confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited remotely...

10CVSS6.7AI score0.76751EPSS
Exploits12References7Affected Software1
BDU FSTEC
BDU FSTEC
added 2015/04/28 12:0 a.m.6 views

Vulnerabilities of the CentOS operating system that allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information

The multiple vulnerabilities in the openssh-server-3.9p1 package of the CentOS operating system can be exploited, leading to breaches of the confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited remotely...

9.3CVSS7.2AI score0.02674EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2015/04/28 12:0 a.m.5 views

Vulnerabilities of the Red Hat Enterprise Linux operating system, which allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information

The multiple vulnerabilities in the openssh-server-3.1p1 package of the Red Hat Enterprise Linux operating system can be exploited, leading to breaches of the confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited remotely...

9.3CVSS6.8AI score0.44963EPSS
Exploits10References6Affected Software1
BDU FSTEC
BDU FSTEC
added 2015/04/28 12:0 a.m.8 views

Vulnerabilities of the Red Hat Enterprise Linux operating system, which allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information

The multiple vulnerabilities in the openssh-server-3.9p1 package of the Red Hat Enterprise Linux operating system may lead to breaches of the confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited remotely...

9.3CVSS7.1AI score0.02674EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2015/04/28 12:0 a.m.4 views

Vulnerabilities of the Red Hat Linux operating system, which allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information

The multiple vulnerabilities in the openssh-server-2.9p2 package of the Red Hat Linux operating system may lead to breaches of the confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited remotely...

7.5CVSS7.4AI score0.02949EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2015/04/28 12:0 a.m.4 views

The vulnerability of the Red Hat Enterprise Linux operating system allows a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the openssh-server-3.6.1p2 package for the Red Hat Enterprise Linux operating system can lead to violations of confidentiality, integrity, and accessibility of protected information. This vulnerability can be exploited remotely...

7.5CVSS6.4AI score0.02681EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2015/04/28 12:0 a.m.6 views

The vulnerability of the Red Hat Enterprise Linux operating system allows a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the openssh-server-4.3p2 package for the Red Hat Enterprise Linux operating system can lead to violations of confidentiality, integrity, and accessibility of protected information. This vulnerability can be exploited remotely...

9.3CVSS7.1AI score0.00318EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2014/12/06 3:59 p.m.55 views

CVE-2014-9278

The OpenSSH server, as used in Fedora and Red Hat Enterprise Linux 7 and when running in a Kerberos environment, allows remote authenticated users to log in as another user when they are listed in the .k5users file of that user, which might bypass intended authentication requirements that would...

4CVSS6.8AI score0.01833EPSS
Exploits0References2
Metasploit
Metasploit
added 2014/11/11 8:59 p.m.8269 views

SSH Username Enumeration

This module uses a malformed packet or timing attack to enumerate users on an OpenSSH server. The default action sends a malformed corrupted SSHMSGUSERAUTHREQUEST packet using public key authentication must be enabled to enumerate users. On some versions of OpenSSH under some configurations,...

5.9CVSS6.5AI score0.98631EPSS
Exploits41
Hacker One
Hacker One
added 2014/08/18 4:4 a.m.161 views

Greenhouse.io: openssh-server Forced Command Handling Information Disclosure Vulnerability on blog.greenhouse.io

Summary of the issue: The authparseoptions function in auth-options.c in sshd in OpenSSH before 5.7 provides debug messages containing authorizedkeys command options, which allows remote authenticated users to obtain potentially sensitive information by reading these messages, as demonstrated by...

3.5CVSS5.3AI score0.03672EPSS
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.18 views

Windows Service Trusted Path Privilege Escalation

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' require...

7.1AI score
Exploits0
Check Point Advisories
Check Point Advisories
added 2013/10/27 12:0 a.m.16 views

OpenSSH maxstartup Threshold Connection Exhaustion Denial of Service - ver 2 (CVE-2010-5107)

A denial of service vulnerability exists in the OpenSSH server daemon sshd. The vulnerability is due to a default configuration that only allows a small number of unauthenticated connections, after which the server will stop accepting any new connections. A remote unauthenticated attacker can...

5CVSS5.8AI score0.1651EPSS
Exploits1
0day.today
0day.today
added 2012/08/15 12:0 a.m.20 views

Windows Service Trusted Path Privilege Escalation

Exploit for windows platform in category local exploits This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core'...

6.8AI score
Exploits0
Packet Storm
Packet Storm
added 2012/08/15 12:0 a.m.18 views

Windows Service Trusted Path Privilege Escalation

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' require 'msf/core/post/common' require...

0.6AI score
Exploits0
Rows per page
Query Builder