Test ID:	1.3.6.1.4.1.25623.1.0.103064
Category:	General
Title:	OpenSSH Legacy Certificate Signing Information Disclosure Vulnerability
Summary:	Determine if installed OpenSSH version is vulnerablwe
Description:	Overview: OpenSSH is prone to an information-disclosure vulnerability. Successful exploits will allow attackers to gain access to sensitive information this may lead to further attacks. Versions prior to OpenSSH 5.8 are vulnerable. Solution: Updates are available. Please see the references for more information. References: https://www.securityfocus.com/bid/46155 http://www.openssh.com/txt/release-5.8 http://www.openssh.com
Cross-Ref:	BugTraq ID: 46155 Common Vulnerability Exposure (CVE) ID: CVE-2011-0539 http://www.openwall.com/lists/oss-security/2011/02/04/2 HPdes Security Advisory: HPSBMA02658 http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02794777 HPdes Security Advisory: SSRT100413 http://www.securityfocus.com/bid/46155 http://www.securitytracker.com/id?1025028 http://secunia.com/advisories/43181 http://secunia.com/advisories/44269 http://www.vupen.com/english/advisories/2011/0284 XForce ISS Database: openssh-certificate-info-disclosure(65163) http://xforce.iss.net/xforce/xfdb/65163
Copyright	This script is Copyright (C) 2011 Greenbone Networks GmbH

This is only one of 32582 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.

New User Registration Email: UserID: Passwd: Please email me your monthly newsletters, informing the latest services, improvements & surveys. Please email me a vulnerability test announcement whenever a new test is added.     Privacy

Registered User Login   UserID:     Passwd:     Forgot userid or passwd? Email/Userid: