SSH IPSEC Express 1.1.1 VPN Detection

Binary data 3072.prm...

SSH IPSEC Express 2.0.0 VPN Detection

Binary data 3076.prm...

SSH IPSEC Express 2.1.2 VPN Detection

Binary data 3079.prm...

SSH IPSEC Express 1.1.2 VPN Detection

Binary data 3073.prm...

SSH IPSEC Express 3.0.1 VPN Detection

Binary data 3081.prm...

SSH IPSEC Express 2.1.1 VPN Detection

Binary data 3078.prm...

SSH IPSEC Express 1.2.2 VPN Detection

Binary data 3075.prm...

Some SSH servers on Microsoft Windows set insecure permissions for the host identification key file

Overview SSH provides remote, encrypted terminal access to hosts. Some SSH servers, when running on Microsoft Windows, set insecure permissions on the file storing the private SSH server hostkey. This could allow an authenticated user to obtain the SSH hostkey and use it to impersonate the server...

CVE-2005-2189

Lantronix SecureLinx console server running firmware 2.0 and 3.0 stores /etc/ssh under the web document root with insufficient access control, which allows remote attackers to obtain sensitive information such as SSH private keys...

CVE-2005-2189

The CVE-2005-2189 issue affects Lantronix SecureLinx console server running firmware 2.0 and 3.0. The vulnerability arises because the web server stores /etc/ssh under the web document root with insufficient access control, allowing remote attackers to obtain sensitive information such as SSH pri...

SSH Valid Banner Check

Binary data 3059.prm...

CVE-2005-2146

SSH Tectia Server 4.3.1 and earlier, and SSH Secure Shell for Windows Servers, uses insecure permissions when generating the Secure Shell host identification key, which allows local users to access the key and spoof the server...

CVE-2005-2146

SSH Tectia Server 4.3.1 and earlier, and SSH Secure Shell for Windows Servers, uses insecure permissions when generating the Secure Shell host identification key, which allows local users to access the key and spoof the server...

Access right escalation / severe permission problems on Raritan Console Servers

Hi, during my research on console servers I've encountered a severe problem on one appliance. Summary: Access right escalation / severe permission problems on Raritan Console Servers Confirmed on DSX32, Software version: 2.4.6 www.raritan.com, more see below Details: DSX Raritan Console Servers...

CVE-2002-1715

SSH 1 through 3, and possibly other versions, allows local users to bypass restricted shells such as rbash or rksh by uploading a script to a world-writeable directory, then executing that script to gain normal shell access...

CVE-2002-1715

SSH 1 through 3, and possibly other versions, allows local users to bypass restricted shells such as rbash or rksh by uploading a script to a world-writeable directory, then executing that script to gain normal shell access...

RHEL 2.1 : openssh (RHSA-2005:481)

Updated openssh packages that fix a potential security vulnerability and various other bugs are now available for Red Hat Enterprise Linux 2.1. This update has been rated as having low security impact by the Red Hat Security Response Team. OpenSSH is OpenBSD's SSH Secure SHell protocol...

RHEL 3 : openssh (RHSA-2005:106)

Updated openssh packages that fix a potential security vulnerability and various other bugs are now available for Red Hat Enterprise Linux 3. This update has been rated as having low security impact by the Red Hat Security Response Team. OpenSSH is OpenBSD's SSH Secure SHell protocol...

CVE-2005-1560

The vulnerability CVE-2005-1560 concerns the SSH module in Neteyes Nexusway, where remote attackers can execute arbitrary commands by injecting shell metacharacters in arguments to certain commands (as demonstrated with ping and traceroute). The provided documents do not specify affected versions...

CVE-2004-2004

The Live CD in SUSE LINUX 9.1 Personal edition is configured without a password for root, which allows remote attackers to gain privileges via SSH...