Lucene search
K

6 matches found

OpenVAS
OpenVAS
added 2020/11/09 12:0 a.m.10 views

Linux: SSH PasswordAuthentication

sshd reads configuration data from /etc/ssh/sshdconfig or the file specified with -f on the command line. The file contains keyword-argument pairs, one per line. Lines starting with Copyright C 2020 Greenbone Networks GmbH SPDX-License-Identifier: GPL-2.0-or-later This program is free software; y...

7.5AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2017/09/01 12:0 a.m.89 views

FreeBSD < 10.3-RELEASE-p21 / 11.0 < 11.0-RELEASE-p12 / 11.1 < 11.1-RELEASE-p1 OpenSSH Password Length DoS (FreeBSD-SA-17:06.openssh)

The version of the FreeBSD kernel running on the remote host is prior to 10.3-RELEASE-p21, 11.0 prior to 11.0-RELEASE-p12, or 11.1 prior to 11.1-RELEASE-p1. It, therefore, affected by a flaw in built-in password authentication in OpenSSH. An unauthenticated, remote attacker can exploit this issue...

7.8CVSS7AI score0.58568EPSS
Exploits5References2
FreeBSD
FreeBSD
added 2017/08/10 12:0 a.m.56 views

FreeBSD -- OpenSSH Denial of Service vulnerability

Problem Description: There is no limit on the password length. Impact: A remote attacker may be able to cause an affected SSH server to use excessive amount of CPU by sending very long passwords, when PasswordAuthentication is enabled by the system administrator...

7.8CVSS2.7AI score0.58568EPSS
Exploits5
FreeBSD Advisory
FreeBSD Advisory
added 2017/08/10 12:0 a.m.39 views

FreeBSD-SA-17:06.openssh

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 ============================================================================= FreeBSD-SA-17:06.openssh Security Advisory The FreeBSD Project Topic: OpenSSH Denial of Service vulnerability Category: contrib Module: OpenSSH Announced: 2017-08-10...

7.8CVSS7AI score0.58568EPSS
Exploits5
Tenable Nessus
Tenable Nessus
added 2015/03/26 12:0 a.m.21 views

Debian DLA-42-1 : live-config security update

A vulnerability against Debian Live, the live systems project, was reported. The default, the live images include a SSH server allowing for log in with default user and password. This fix set PasswordAuthentication in /etc/ssh/sshdconfig as 'no'. NOTE: Tenable Network Security has extracted the...

5.5AI score
Exploits0References2
Debian
Debian
added 2014/08/29 3:7 a.m.21 views

[DLA 42-1] live-config security update

Package : live-config Version : 2.0.15-1.1+deb6u1 Debian Bug : 741678 A vulnerability against Debian Live, the live systems project, was reported. The default, the live images include a SSH server allowing for log in with default user and password. This fix set PasswordAuthentication in...

7.3AI score
Exploits0
Rows per page
Query Builder