|
|
Family: Gain a shell remotely --> Category: infos
SSH Secure-RPC Weak Encrypted Authentication Vulnerability Scan
Vulnerability Scan Summary
Checks for the remote SSH version
Detailed Explanation for this Vulnerability Test
Synopsis :
The remote SSH server might allow a local user to recover a SUN-DES-1
passphrase.
Description :
The remote host is running a version of SSH Communications Security SSH
comprised between versions 1.2.27 and 1.2.30.
With Secure-RPC, this version can allow local attackers to recover a SUN-DES-1
magic phrase generated by another user, which the attacker can use to decrypt
that user's private key file.
Solution :
Download and install the newest version of this software.
Threat Level:
Low / CVSS Base Score : 3
(AV:R/AC:H/Au:NR/C:P/A:N/I:N/B:C)
Click HERE for more information and discussions on this network vulnerability scan.
|
