47 matches found
Cisco Devices Multiple SSH Information Disclosure Vulnerabilities
According to its version number, the remote host is a Cisco router or switch running a vulnerable SSH daemon. By exploiting weaknesses in the SSH protocol, it is possible to insert arbitrary commands into an established SSH session, collect information that may help in brute-force key recovery, o...
SSH2 3.0 - Restricted Shell Escape (Command Execution)
SSH2 3.0 - Restricted Shell Escape Command Execution source: https://www.securityfocus.com/bid/4547/info SSH and derivatives is the protocol Secure Shell protocol implementation. It is available for various operating systems, although this vulnerability affects operating systems such as Unix and...
Много дырок в ssh (ssh1, ssh2, openssh)
Проблемы с перезаписью памяти, проблемы с обменом ключей, позволяющие перехватить сеансовый ключ...
CVE-2001-0361
Implementations of SSH version 1.5, including 1 OpenSSH up to version 2.3.0, 2 AppGate, and 3 ssh-1 up to version 1.2.31, in certain configurations, allow a remote attacker to decrypt and/or alter traffic via a "Bleichenbacher attack" on PKCS1 version 1.5...
PT-2001-1770 · Openssh +1 · Openssh +1
Name of the Vulnerable Software and Affected Versions: OpenSSH affected versions not specified Description: The SSH protocols 1 and 2 as implemented in OpenSSH have various weaknesses that can allow a remote attacker to obtain sensitive information via sniffing. This includes password lengths or...
Multiple SSH Vulnerabilities
...
SSH allows deletion of other users files...
Sorry, I forgot some relevant information. With regards to previous post: Tested on:- Red Hat Linux release 7.0 Guinness zen-parse@clarity zen-parse$ rpm -qf /usr/sbin/sshd openssh-server-2.5.2p2-1.7.2 zen-parse@clarity zen-parse$ ssh -V OpenSSH2.5.2p2, SSH protocols 1.5/2.0, OpenSSL 0x0090581f T...