exploitDog

CVE-2005-2146

Опубликовано: 05 июл. 2005

Источник: nvd

CVSS2: 4.6

EPSS Низкий

Описание

SSH Tectia Server 4.3.1 and earlier, and SSH Secure Shell for Windows Servers, uses insecure permissions when generating the Secure Shell host identification key, which allows local users to access the key and spoof the server.

Ссылки

http://secunia.com/advisories/15894
Patch
Vendor Advisory
http://www.ssh.com/company/newsroom/article/653/
Patch
Vendor Advisory
http://secunia.com/advisories/15894
Patch
Vendor Advisory
http://www.ssh.com/company/newsroom/article/653/
Patch
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:ssh:tectia_server:4.3.1:*:*:*:*:*:*:*

EPSS

Процентиль: 12%

0.0004

Низкий

4.6 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-jq5x-f35w-xxr2

github

почти 4 года назад

SSH Tectia Server 4.3.1 and earlier, and SSH Secure Shell for Windows Servers, uses insecure permissions when generating the Secure Shell host identification key, which allows local users to access the key and spoof the server.

EPSS

Процентиль: 12%

0.0004

Низкий

4.6 Medium

CVSS2

Дефекты

NVD-CWE-Other