Описание
Unspecified vulnerability in portable OpenSSH before 4.4, when running on some platforms, allows remote attackers to determine the validity of usernames via unknown vectors involving a GSSAPI "authentication abort."
Unspecified vulnerability in portable OpenSSH before 4.4, when running on some platforms, allows remote attackers to determine the validity of usernames via unknown vectors involving a GSSAPI "authentication abort."
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2006-5052
- https://exchange.xforce.ibmcloud.com/vulnerabilities/29255
- https://issues.rpath.com/browse/RPL-681
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10178
- http://docs.info.apple.com/article.html?artnum=305214
- http://lists.apple.com/archives/security-announce/2007/Mar/msg00002.html
- http://marc.info/?l=openssh-unix-dev&m=115939141729160&w=2
- http://openssh.org/txt/release-4.4
- http://rhn.redhat.com/errata/RHSA-2006-0697.html
- http://secunia.com/advisories/22158
- http://secunia.com/advisories/22173
- http://secunia.com/advisories/22495
- http://secunia.com/advisories/22823
- http://secunia.com/advisories/24479
- http://secunia.com/advisories/27588
- http://secunia.com/advisories/28320
- http://security.gentoo.org/glsa/glsa-200611-06.xml
- http://securitytracker.com/id?1016939
- http://slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.592566
- http://support.avaya.com/elmodocs2/security/ASA-2007-527.htm
- http://www.novell.com/linux/security/advisories/2006_62_openssh.html
- http://www.osvdb.org/29266
- http://www.redhat.com/support/errata/RHSA-2007-0540.html
- http://www.redhat.com/support/errata/RHSA-2007-0703.html
- http://www.securityfocus.com/archive/1/447861/100/200/threaded
- http://www.securityfocus.com/bid/20245
- http://www.us-cert.gov/cas/techalerts/TA07-072A.html
- http://www.vupen.com/english/advisories/2007/0930
EPSS
CVE ID
Связанные уязвимости
Unspecified vulnerability in portable OpenSSH before 4.4, when running on some platforms, allows remote attackers to determine the validity of usernames via unknown vectors involving a GSSAPI "authentication abort."
Unspecified vulnerability in portable OpenSSH before 4.4, when running on some platforms, allows remote attackers to determine the validity of usernames via unknown vectors involving a GSSAPI "authentication abort."
Unspecified vulnerability in portable OpenSSH before 4.4, when running on some platforms, allows remote attackers to determine the validity of usernames via unknown vectors involving a GSSAPI "authentication abort."
Unspecified vulnerability in portable OpenSSH before 4.4, when running ...
ELSA-2007-0540: openssh security and bug fix update (MODERATE)
EPSS