Free and open-source vulnerability scanner
Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.
Install NowAvailable for macOS, Windows, and Linux
OpenSSH 3.2.2 Security Vulnerability
Information
Severity
Severity
Family
Family
CVSSv2 Base
CVSSv2 Base
CVSSv2 Vector
CVSSv2 Vector
Solution Type
Solution Type
Created
Created
Modified
Modified
Summary
A possible security issue for sshd in OpenBSD has been reported. A vulnerability related to the implementation of BSD authentication exists in sshd that may have security implications. In access configurations which use YP with netgroups, sshd will authenticate users via ACL by checking for the requested username and password. Under certain circumstances, when sshd does ACL checks for the requested username, it may instead use the password entry of a different user for authentication. This could occur in environments where YP/NIS is in use.
Insight
Insight
Please see the references for more information on the vulnerabilities.
Affected Software
Affected Software
OpenSSH version 3.2.2.
Detection Method
Detection Method
Checks if a vulnerable version is present on the target host.
Solution
Solution
Update to version 3.3 or later.