CVE-2004-1357

Опубликовано: 07 апр. 2004

Источник: nvd

CVSS2: 5

EPSS Низкий

Описание

The Secure Shell (SSH) Daemon (SSHD) in Sun Solaris 9 does not properly log IP addresses when SSHD is configured with the ListenAddress as 0.0.0.0, which makes it easier for remote attackers to hide the source of their activities.

Ссылки

http://secunia.com/advisories/11316/
Patch
Vendor Advisory
http://sunsolve.sun.com/search/document.do?assetkey=1-26-57538-1
Patch
Vendor Advisory
http://www.auscert.org.au/render.html?it=4003
Patch
Vendor Advisory
http://www.kb.cert.org/vuls/id/737548
Patch
Third Party Advisory
US Government Resource
http://www.securityfocus.com/bid/10080
Patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/15784
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3505
http://secunia.com/advisories/11316/
Patch
Vendor Advisory
http://sunsolve.sun.com/search/document.do?assetkey=1-26-57538-1
Patch
Vendor Advisory
http://www.auscert.org.au/render.html?it=4003
Patch
Vendor Advisory
http://www.kb.cert.org/vuls/id/737548
Patch
Third Party Advisory
US Government Resource
http://www.securityfocus.com/bid/10080
Patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/15784
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3505

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:sun:solaris:9.0:*:sparc:*:*:*:*:*

cpe:2.3:o:sun:solaris:9.0:*:x86:*:*:*:*:*

EPSS

Процентиль: 89%

0.04977

Низкий

5 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-xmv4-8r32-2jcg

github

больше 3 лет назад