[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]

OpenSSH 3.9p1-portable PAM Authentication Remote Information Disclosure

From: John Dalbec <jpdalbec ysu edu>
To: Discussion of the Fedora Legacy Project <fedora-legacy-list redhat com>
Subject: OpenSSH 3.9p1-portable PAM Authentication Remote Information Disclosure
Date: Tue, 07 Dec 2004 09:36:11 -0500

Does this affect -Legacy?
04.48.30 CVE: CAN-2003-0190
Platform: Cross Platform
Title: OpenSSH-portable PAM Authentication Remote Information
Disclosure
Description: OpenSSH is an open source implementation of the Secure
Shell protocol. It is vulnerable to a remote information disclosure
issue that allows an attacker to guess valid user names on the target
system. OpenSSH version 3.9p1 is known to be vulnerable.
Ref: http://www.securityfocus.com/advisories/7575

Follow-Ups:
- Re: OpenSSH 3.9p1-portable PAM Authentication Remote Information Disclosure
  - From: Michal Jaegermann
- Re: OpenSSH 3.9p1-portable PAM Authentication Remote Information Disclosure
  - From: Tres Seaver

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]