Описание
sshd in OpenSSH before 4.2, when GSSAPIDelegateCredentials is enabled, allows GSSAPI credentials to be delegated to clients who log in using non-GSSAPI methods, which could cause those credentials to be exposed to untrusted users or hosts.
sshd in OpenSSH before 4.2, when GSSAPIDelegateCredentials is enabled, allows GSSAPI credentials to be delegated to clients who log in using non-GSSAPI methods, which could cause those credentials to be exposed to untrusted users or hosts.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2005-2798
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24064
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1345
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1566
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9717
- https://usn.ubuntu.com/209-1
- http://lists.suse.com/archive/suse-security-announce/2006-Feb/0001.html
- http://secunia.com/advisories/16686
- http://secunia.com/advisories/17077
- http://secunia.com/advisories/17245
- http://secunia.com/advisories/18010
- http://secunia.com/advisories/18406
- http://secunia.com/advisories/18507
- http://secunia.com/advisories/18661
- http://secunia.com/advisories/18717
- http://securitytracker.com/id?1014845
- http://support.avaya.com/elmodocs2/security/ASA-2006-016.htm
- http://support.avaya.com/elmodocs2/security/ASA-2006-033.htm
- http://www.mandriva.com/security/advisories?name=MDKSA-2005:172
- http://www.mindrot.org/pipermail/openssh-unix-announce/2005-September/000083.html
- http://www.osvdb.org/19141
- http://www.redhat.com/support/errata/RHSA-2005-527.html
- http://www.securityfocus.com/archive/1/421411/100/0/threaded
- http://www.securityfocus.com/bid/14729
- http://www.vupen.com/english/advisories/2006/0144
EPSS
CVE ID
Связанные уязвимости
sshd in OpenSSH before 4.2, when GSSAPIDelegateCredentials is enabled, allows GSSAPI credentials to be delegated to clients who log in using non-GSSAPI methods, which could cause those credentials to be exposed to untrusted users or hosts.
sshd in OpenSSH before 4.2, when GSSAPIDelegateCredentials is enabled, allows GSSAPI credentials to be delegated to clients who log in using non-GSSAPI methods, which could cause those credentials to be exposed to untrusted users or hosts.
sshd in OpenSSH before 4.2, when GSSAPIDelegateCredentials is enabled, allows GSSAPI credentials to be delegated to clients who log in using non-GSSAPI methods, which could cause those credentials to be exposed to untrusted users or hosts.
sshd in OpenSSH before 4.2, when GSSAPIDelegateCredentials is enabled, ...
EPSS