Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntuUbuntuUSN-209-1
HistoryOct 18, 2005 - 12:00 a.m.

SSH server vulnerability

2005-10-1800:00:00
ubuntu.com
63

5.8 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.014 Low

EPSS

Percentile

86.1%

JSON

Releases

  • Ubuntu 5.04
  • Ubuntu 4.10

Details

An information disclosure vulnerability has been found in the SSH
server. When the GSSAPIAuthentication option was enabled, the SSH
server could send GSSAPI credentials even to users who attempted to
log in with a method other than GSSAPI. This could inadvertently
expose these credentials to an untrusted user.

Please note that this does not affect the default configuration of the
SSH server.

OSVersionArchitecturePackageVersionFilename
Ubuntu5.04noarchopenssh-server< *UNKNOWN
Ubuntu4.10noarchopenssh-server< *UNKNOWN

Related

nessus 12
f5 2
openvas 2
ubuntucve 1
debiancve 1
cve 1
redhat 1
centos 1
securityvulns 1
nessus
nessus
Fedora Core 3 : openssh-3.9p1-8.0.3 (2005-858)
2005-09-17 00:00:00
MDKSA-2005:172 : openssh
2006-01-15 00:00:00
Ubuntu 4.10 / 5.04 : openssh vulnerability (USN-209-1)
2006-01-15 00:00:00
f5
f5
SOL5860 - GSSAPI authentication vulnerability in OpenSSH - CAN-2005-2798
2007-05-16 00:00:00
K5860 : GSSAPI authentication vulnerability in OpenSSH - CAN-2005-2798
2013-03-28 00:00:00
openvas
openvas
OpenSSH 'sshd' GSSAPI Credential Disclosure Vulnerability
2011-11-16 00:00:00
OpenSSH 'sshd' GSSAPI Credential Disclosure Vulnerability
2011-11-16 00:00:00
ubuntucve
ubuntucve
CVE-2005-2798
2005-09-06 00:00:00
debiancve
debiancve
CVE-2005-2798
2005-09-06 17:03:00
cve
cve
CVE-2005-2798
2005-09-06 17:03:00
redhat
redhat
(RHSA-2005:527) openssh security update
2005-10-05 00:00:00
centos
centos
openssh security update
2005-10-05 16:16:35
securityvulns
securityvulns
[security bulletin] HPSBUX02090 SSRT051058 rev.2 - HP-UX Secure Shell Remote Denial of Service &#40;DoS&#41;
2006-06-09 00:00:00

5.8 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.014 Low

EPSS

Percentile

86.1%

JSON
Related for USN-209-1
nessus12f52openvas2ubuntucve1debiancve1cve1redhat1centos1securityvulns1