English | Deutsch | Español
 
Home ▼
Home About Us Contact Us Privacy Partner Programs Testimonials In Press Mailing Lists Abuse Developer APIs
Bookkeeping
Online ▼
Home Free Trial FAQ
Open/Create Company File Accept an Invite Order/Renew
Security
Audits ▼
Home Dedicated audits Advanced audits Standard audits Recurring audits No Risk audits Desktop audits Basic audit Security Seal FAQ Price/Feature Summary Order New Tests All Tests Confidentiality Vulnerability search Run Audit Scheduler IP Permissions Audit Configuration Editor Scan Queue Reminder Notification Schedule Seal Reports Reports Style Editor
Managed
DNS ▼
About Order FAQ Acceptable Use Policy Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password
Network
Monitor ▼
Enterprise Package Advanced Package Standard Package Free Trial FAQ Price/Feature Summary Order/Renew Examples
Configure/Status Alert Profiles
Research
Reports ▼
Home FAQ Glossary Archive
 Login/Register 
 
 Vulnerability   
Search   		     Search 324607 CVE descriptions
and 145615 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.51588
Category:Conectiva Local Security Checks
Title:Conectiva Security Advisory CLA-2001:431
Summary:NOSUMMARY
Description:Description:

The remote host is missing updates announced in
advisory CLA-2001:431.

OpenSSH is a tool to access remote machines via a cryptographic
connection.

Three vulnerabilities are being addressed by this advisory:

1) Markus Friedl reported [1] a vulnerability [2] in OpenSSH that
could allow users to circumvent system policy and login from
disallowed source IP addresses.
This only affects sites using the from= key file option in
combination with both RSA and DSA keys in the ~
/.ssh/authorized_keys2
file. If the key with the from= option is immediattely followed by
a key of a different type then the options for this second key are
applied to both keys. If this second key doesn't have the from=
option, for example, this would effectively remove this option from
the first key.

2) Peter W. reported [5] that the sftp subsystem in openssh 2.5 and
2.9 is not subject to command= restrictions in the
~
/.ssh/authorized_keys2 file. Users could bypass these restrictions
if they used sftp, which was enabled by default on our releases of
this package. New installs will have this subsystem disabled by
default (upgrades won't touch this setting).

3) For Conectiva Linux <= 6.0 this update also fixes the older cookie
removal [3] vulnerability, announced [4] by zen-parse, where an user
could trick ssh into removing any file called cookies. This only
affects systems with X11 forwarding enabled, which is not the default
in our packages.


Solution:
The apt tool can be used to perform RPM package upgrades
by running 'apt-get update' followed by 'apt-get upgrade'

http://www.securityspace.com/smysecure/catid.html?in=CLA-2001:431
http://distro.conectiva.com.br/atualizacoes/index.php?id=a&anuncio=002001

Risk factor : High

CopyrightCopyright (c) 2005 E-Soft Inc. http://www.securityspace.com

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.



© 1998-2025 E-Soft Inc. All rights reserved.