First published: Tue Sep 06 2005(Updated: )
sshd in OpenSSH before 4.2, when GSSAPIDelegateCredentials is enabled, allows GSSAPI credentials to be delegated to clients who log in using non-GSSAPI methods, which could cause those credentials to be exposed to untrusted users or hosts.
Credit: secalert@redhat.com
Affected Software | Affected Version | How to fix |
---|---|---|
Openbsd Openssh | =3.8 | |
Openbsd Openssh | =3.8.1p1 | |
Openbsd Openssh | =3.1 | |
Openbsd Openssh | =3.0.2p1 | |
Openbsd Openssh | =3.8.1 | |
Openbsd Openssh | =3.7.1p2 | |
Openbsd Openssh | =3.2.3p1 | |
Openbsd Openssh | =3.1p1 | |
Openbsd Openssh | =3.6.1p2 | |
Openbsd Openssh | =3.9 | |
Openbsd Openssh | =3.0 | |
Openbsd Openssh | =3.2 | |
Openbsd Openssh | =3.6 | |
Openbsd Openssh | =3.7 | |
Openbsd Openssh | =4.0p1 | |
Openbsd Openssh | =3.5p1 | |
Openbsd Openssh | =3.0.1p1 | |
Openbsd Openssh | =3.3 | |
Openbsd Openssh | =3.2.2p1 | |
Openbsd Openssh | =3.9.1p1 | |
Openbsd Openssh | =3.0.2 | |
Openbsd Openssh | =3.4p1 | |
Openbsd Openssh | =3.6.1p1 | |
Openbsd Openssh | =3.0.1 | |
Openbsd Openssh | =3.6.1 | |
Openbsd Openssh | =4.1p1 | |
Openbsd Openssh | =3.7.1 | |
Openbsd Openssh | =3.4 | |
Openbsd Openssh | =3.5 | |
Openbsd Openssh | =3.0p1 | |
Openbsd Openssh | =3.3p1 | |
Openbsd Openssh | =3.9.1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.