English | Deutsch | Español
 
Home ▼
Home About Us Contact Us Privacy Partner Programs Testimonials In Press Mailing Lists Abuse Developer APIs
Bookkeeping
Online ▼
Home Free Trial FAQ
Open/Create Company File Accept an Invite Order/Renew
Security
Audits ▼
Home Dedicated audits Advanced audits Standard audits Recurring audits No Risk audits Desktop audits Basic audit Security Seal FAQ Price/Feature Summary Order New Tests All Tests Confidentiality Vulnerability search Run Audit Scheduler IP Permissions Audit Configuration Editor Scan Queue Reminder Notification Schedule Seal Reports Reports Style Editor
Managed
DNS ▼
About Order FAQ Acceptable Use Policy Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password
Network
Monitor ▼
Enterprise Package Advanced Package Standard Package Free Trial FAQ Price/Feature Summary Order/Renew Examples
Configure/Status Alert Profiles
Research
Reports ▼
Home FAQ Glossary Archive
 Login/Register 
 
 Vulnerability   
Search   		     Search 324607 CVE descriptions
and 145615 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.57447
Category:Red Hat Local Security Checks
Title:RedHat Security Advisory RHSA-2006:0698
Summary:NOSUMMARY
Description:Description:

The remote host is missing updates announced in
advisory RHSA-2006:0698.

OpenSSH is OpenBSD's SSH (Secure SHell) protocol implementation. This
package includes the core files necessary for both the OpenSSH client and
server.

Mark Dowd discovered a signal handler race condition in the OpenSSH sshd
server. A remote attacker could possibly leverage this flaw to cause a
denial of service (crash). (CVE-2006-5051) The OpenSSH project believes the
likelihood of successful exploitation leading to arbitrary code execution
appears remote. However, the Red Hat Security Response Team have not yet
been able to verify this claim due to lack of upstream vulnerability
information. We are therefore including a fix for this flaw and have rated
it important security severity in the event our continued investigation
finds this issue to be exploitable.

Tavis Ormandy of the Google Security Team discovered a denial of service
bug in the OpenSSH sshd server. A remote attacker can send a specially
crafted SSH-1 request to the server causing sshd to consume a large
quantity of CPU resources. (CVE-2006-4924)

An arbitrary command execution flaw was discovered in the way scp copies
files locally. It is possible for a local attacker to create a file with a
carefully crafted name that could execute arbitrary commands as the user
running scp to copy files locally. (CVE-2006-0225)

The SSH daemon, when restricting host access by numeric IP addresses and
with VerifyReverseMapping disabled, allows remote attackers to bypass
from= and user@host address restrictions by connecting to a host from a
system whose reverse DNS hostname contains the numeric IP address.
(CVE-2003-0386)

All users of openssh should upgrade to these updated packages, which
contain backported patches that resolve these issues.

Solution:
Please note that this update is available via
Red Hat Network. To use Red Hat Network, launch the Red
Hat Update Agent with the following command: up2date

http://rhn.redhat.com/errata/RHSA-2006-0698.html
http://www.redhat.com/security/updates/classification/#important

Risk factor : Critical

CVSS Score:
9.3

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2006-4924
http://lists.apple.com/archives/security-announce/2007/Mar/msg00002.html
BugTraq ID: 20216
http://www.securityfocus.com/bid/20216
Bugtraq: 20060927 rPSA-2006-0174-1 gnome-ssh-askpass openssh openssh-client openssh-server (Google Search)
http://www.securityfocus.com/archive/1/447153/100/0/threaded
Cert/CC Advisory: TA07-072A
http://www.us-cert.gov/cas/techalerts/TA07-072A.html
CERT/CC vulnerability note: VU#787448
http://www.kb.cert.org/vuls/id/787448
Debian Security Information: DSA-1189 (Google Search)
http://www.debian.org/security/2006/dsa-1189
Debian Security Information: DSA-1212 (Google Search)
http://www.debian.org/security/2006/dsa-1212
FreeBSD Security Advisory: FreeBSD-SA-06:22.openssh
http://security.freebsd.org/advisories/FreeBSD-SA-06%3A22.openssh.asc
ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-06:22.openssh.asc
http://security.gentoo.org/glsa/glsa-200609-17.xml
http://security.gentoo.org/glsa/glsa-200611-06.xml
HPdes Security Advisory: HPSBUX02178
http://itrc.hp.com/service/cki/docDisplay.do?docId=c00815112
HPdes Security Advisory: SSRT061267
http://www.mandriva.com/security/advisories?name=MDKSA-2006:179
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=207955
http://marc.info/?l=openssh-unix-dev&m=115939141729160&w=2
http://www-unix.globus.org/mail_archive/security-announce/2007/04/msg00000.html
OpenBSD Security Advisory: [2.9] 015: SECURITY FIX: October 12, 2006
http://www.openbsd.org/errata.html#ssh
http://www.openpkg.org/security/advisories/OpenPKG-SA-2006.022-openssh.html
http://www.osvdb.org/29152
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10462
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1193
http://www.redhat.com/support/errata/RHSA-2006-0697.html
http://www.redhat.com/support/errata/RHSA-2006-0698.html
SCO Security Bulletin: SCOSA-2008.2
ftp://ftp.sco.com/pub/unixware7/714/security/p534336/p534336.txt
http://securitytracker.com/id?1016931
http://secunia.com/advisories/21923
http://secunia.com/advisories/22091
http://secunia.com/advisories/22116
http://secunia.com/advisories/22158
http://secunia.com/advisories/22164
http://secunia.com/advisories/22183
http://secunia.com/advisories/22196
http://secunia.com/advisories/22208
http://secunia.com/advisories/22236
http://secunia.com/advisories/22245
http://secunia.com/advisories/22270
http://secunia.com/advisories/22298
http://secunia.com/advisories/22352
http://secunia.com/advisories/22362
http://secunia.com/advisories/22487
http://secunia.com/advisories/22495
http://secunia.com/advisories/22823
http://secunia.com/advisories/22926
http://secunia.com/advisories/23038
http://secunia.com/advisories/23241
http://secunia.com/advisories/23340
http://secunia.com/advisories/23680
http://secunia.com/advisories/24479
http://secunia.com/advisories/24799
http://secunia.com/advisories/24805
http://secunia.com/advisories/25608
http://secunia.com/advisories/29371
http://secunia.com/advisories/34274
SGI Security Advisory: 20061001-01-P
ftp://patches.sgi.com/support/free/security/advisories/20061001-01-P.asc
http://slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.592566
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102962-1
SuSE Security Announcement: SUSE-SA:2006:062 (Google Search)
http://www.novell.com/linux/security/advisories/2006_62_openssh.html
SuSE Security Announcement: SUSE-SR:2006:024 (Google Search)
http://www.novell.com/linux/security/advisories/2006_24_sr.html
http://www.trustix.org/errata/2006/0054
http://www.ubuntu.com/usn/usn-355-1
http://www.vupen.com/english/advisories/2006/3777
http://www.vupen.com/english/advisories/2006/4401
http://www.vupen.com/english/advisories/2006/4869
http://www.vupen.com/english/advisories/2007/0930
http://www.vupen.com/english/advisories/2007/1332
http://www.vupen.com/english/advisories/2007/2119
http://www.vupen.com/english/advisories/2009/0740
XForce ISS Database: openssh-block-dos(29158)
https://exchange.xforce.ibmcloud.com/vulnerabilities/29158
Common Vulnerability Exposure (CVE) ID: CVE-2006-0225
1015540
http://securitytracker.com/id?1015540
102961
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102961-1
16369
http://www.securityfocus.com/bid/16369
18579
http://secunia.com/advisories/18579
18595
http://secunia.com/advisories/18595
18650
http://secunia.com/advisories/18650
18736
http://secunia.com/advisories/18736
18798
http://secunia.com/advisories/18798
18850
http://secunia.com/advisories/18850
18910
http://secunia.com/advisories/18910
18964
http://secunia.com/advisories/18964
18969
http://secunia.com/advisories/18969
18970
http://secunia.com/advisories/18970
19159
http://secunia.com/advisories/19159
2006-0004
http://www.trustix.org/errata/2006/0004
20060212 [3.8] 005: SECURITY FIX: February 12, 2006
ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.8/common/005_ssh.patch
20060703-01-P
ftp://patches.sgi.com/support/free/security/advisories/20060703-01-U.asc
20723
http://secunia.com/advisories/20723
21129
http://secunia.com/advisories/21129
21262
http://secunia.com/advisories/21262
21492
http://secunia.com/advisories/21492
21724
http://secunia.com/advisories/21724
22196
22692
http://www.osvdb.org/22692
23241
23340
23680
24479
25607
http://secunia.com/advisories/25607
25936
http://secunia.com/advisories/25936
462
http://securityreason.com/securityalert/462
ADV-2006-0306
http://www.vupen.com/english/advisories/2006/0306
ADV-2006-2490
http://www.vupen.com/english/advisories/2006/2490
ADV-2006-4869
ADV-2007-0930
ADV-2007-2120
http://www.vupen.com/english/advisories/2007/2120
APPLE-SA-2007-03-13
FEDORA-2006-056
http://www.redhat.com/archives/fedora-announce-list/2006-January/msg00062.html
FLSA-2006:168935
http://www.securityfocus.com/archive/1/425397/100/0/threaded
GLSA-200602-11
http://www.gentoo.org/security/en/glsa/glsa-200602-11.xml
HPSBUX02178
MDKSA-2006:034
http://www.mandriva.com/security/advisories?name=MDKSA-2006:034
OpenPKG-SA-2006.003
http://www.openpkg.org/security/OpenPKG-SA-2006.003-openssh.html
RHSA-2006:0044
http://www.redhat.com/support/errata/RHSA-2006-0044.html
RHSA-2006:0298
http://www.redhat.com/support/errata/RHSA-2006-0298.html
RHSA-2006:0698
SSA:2006-045-06
http://slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.425802
SSRT061267
SUSE-SA:2006:008
http://www.novell.com/linux/security/advisories/2006_08_openssh.html
TA07-072A
USN-255-1
http://www.ubuntu.com/usn/usn-255-1
http://blogs.sun.com/security/entry/sun_alert_102961_security_vulnerability
http://docs.info.apple.com/article.html?artnum=305214
http://support.avaya.com/elmodocs2/security/ASA-2006-158.htm
http://support.avaya.com/elmodocs2/security/ASA-2006-174.htm
http://support.avaya.com/elmodocs2/security/ASA-2006-262.htm
http://support.avaya.com/elmodocs2/security/ASA-2007-246.htm
http://www.vmware.com/support/vi3/doc/esx-3069097-patch.html
http://www.vmware.com/support/vi3/doc/esx-9986131-patch.html
http://www14.software.ibm.com/webapp/set2/sas/f/hmc/power5/install/v52.Readme.html#MH00688
http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=2751
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=174026
openssh-scp-command-execution(24305)
https://exchange.xforce.ibmcloud.com/vulnerabilities/24305
oval:org.mitre.oval:def:1138
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1138
oval:org.mitre.oval:def:9962
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9962
Common Vulnerability Exposure (CVE) ID: CVE-2003-0386
BugTraq ID: 7831
http://www.securityfocus.com/bid/7831
Bugtraq: 20030605 OpenSSH remote clent address restriction circumvention (Google Search)
http://www.securityfocus.com/archive/1/324016/2003-06-03/2003-06-09/0
CERT/CC vulnerability note: VU#978316
http://www.kb.cert.org/vuls/id/978316
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9894
SGI Security Advisory: 20060703-01-P
Common Vulnerability Exposure (CVE) ID: CVE-2006-5051
BugTraq ID: 20241
http://www.securityfocus.com/bid/20241
CERT/CC vulnerability note: VU#851340
http://www.kb.cert.org/vuls/id/851340
http://lists.freebsd.org/pipermail/freebsd-security/2006-October/004051.html
http://www.osvdb.org/29264
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11387
http://securitytracker.com/id?1016940
http://secunia.com/advisories/22173
http://www.vupen.com/english/advisories/2006/4018
http://www.vupen.com/english/advisories/2006/4329
XForce ISS Database: openssh-signal-handler-race-condition(29254)
https://exchange.xforce.ibmcloud.com/vulnerabilities/29254
CopyrightCopyright (c) 2006 E-Soft Inc. http://www.securityspace.com

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.



© 1998-2025 E-Soft Inc. All rights reserved.