Support
Eng
òÕÓ
Company
Home
Services
Solutions
Documentation
News and Events
 
 
 
Knowledgebase
Downloads
Glossary
Ask a Question
Search:     Advanced search
SHALB.com / Security Knowledgebase / Network Security / Gain a shell remotely / OpenSSH 2.5.x - 2.9.x adv.option
server monitoring

OpenSSH 2.5.x - 2.9.x adv.option
Article ID: 10771
Last updated: 27 Jan, 2009
Print
Email to friend
Views: 389
Posted: 22 Jan, 2009
by: Tech Pubs S.
Updated: 27 Jan, 2009
by: Tech Pubs S.

OpenSSH 2.5.x -> 2.9.x adv.option
This script is Copyright (C) 2001 Renaud Deraison

FamilyGain a shell remotely
Plugin ID10771
Bugtraq ID3369
CVE IDCVE-2001-1380

Description:

You are running a version of OpenSSH between 2.5.x and
2.9.x

Depending on the order of the user keys in
~/.ssh/authorized_keys2, sshd might fail to
apply the source IP based access control
restriction to the correct key.

This problem allows users to circumvent
the system policy and login from disallowed
source IP address.

Solution :
Upgrade to OpenSSH 2.9.9

Risk factor : Medium
This article was:   Helpful | Not Helpful
Prev   Next
TWiki INCLUDE Function Command Execution Vulnerability     BadBlue ext.dll mfcisapicommand Parameter Remote Overflow

server monitoring

¿ 2010 "SHALB.com" All rights reserved
SHALB Home
Services
Solutions
Documentation
News and Events