Family: Gain a shell remotely --> Category: infos
SSH Kerberos issue Vulnerability Scan
Vulnerability Scan Summary
Checks for the remote SSH version
Detailed Explanation for this Vulnerability Test
The remote SSH server does not properly protect the kerberos tickets of
The remote host is running a version of SSH which is older than (or as old as)
There is a flaw in the remote version of this software which allows a possible hacker
to eavesdrop the kerberos tickets of legitimate users of this service, as sshd
will set their environment variable KRB5CCNAME to 'none' when they log in.
As a result, kerberos tickets will be stored in the current working directory
of the user, as 'none'.
In certain cases, this may allow a possible hacker to obtain the tickets.
Upgrade to the newest version of SSH.
Low / CVSS Base Score : 3
Click HERE for more information and discussions on this network vulnerability scan.