Vulnerability Assessment & Network Security Forums

If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.

Home >> Browse Vulnerability Assessment Database >> Red Hat Local Security Checks >> RHSA-2003-280: openssh

Vulnerability Assessment Details

RHSA-2003-280: openssh
Vulnerability Assessment Summary
Check for the version of the openssh packages

Detailed Explanation for this Vulnerability Assessment


Updated OpenSSH packages are now available that fix bugs that may be
remotely exploitable.

[Updated 17 Sep 2003]
Updated packages are now available to fix additional buffer manipulation
problems which were fixed in OpenSSH 3.7.1. The Common Vulnerabilities and
Exposures project (cve.mitre.org) has assigned the name CVE-2003-0695 to
these additional issues.

We have also included fixes from Solar Designer for some additional memory
bugs. The Common Vulnerabilities and Exposures project (cve.mitre.org) has
assigned the name CVE-2003-0682 to these issues.

OpenSSH is a suite of network connectivity tools that can be used to
establish encrypted connections between systems on a network and can
provide interactive login sessions and port forwarding, among other
functions.

The OpenSSH team has announced a bug which affects the OpenSSH buffer
handling code. This bug has the potential of being remotely exploitable.
The Common Vulnerabilities and Exposures project (cve.mitre.org) has
assigned the name CVE-2003-0693 to this issue.

All users of OpenSSH should immediately apply this update which contains a
backported fix for this issue.




Solution : http://rhn.redhat.com/errata/RHSA-2003-280.html
Network Security Threat Level: High

Networks Security ID:

Vulnerability Assessment Copyright: This script is Copyright (C) 2004 Tenable Network Security
Cables, Connectors


SanDisk 512GB Ultra Drive Dual Go USB Type-C Flash Drive Green SDDDC3-512G-G46G picture

SanDisk 512GB Ultra Drive Dual Go USB Type-C Flash Drive Green SDDDC3-512G-G46G

$49.99


512GB USB Flash Drive External Storage Memory Stick For iPhone iPad Android picture

512GB USB Flash Drive External Storage Memory Stick For iPhone iPad Android

$17.59


SanDisk 128GB Ultra Fit USB 3.2 Flash Drive, Black - SDCZ430-128G-G46 picture

SanDisk 128GB Ultra Fit USB 3.2 Flash Drive, Black - SDCZ430-128G-G46

$11.99


SanDisk 512GB Ultra Luxe USB 3.2 Gen 1 Flash Drive - SDCZ74-512G-G46 picture

SanDisk 512GB Ultra Luxe USB 3.2 Gen 1 Flash Drive - SDCZ74-512G-G46

$35.99


Lenovo USB 16TB 3.0 USB Flash Drive Thumb Disk Silver Transfer Metal Memory picture

Lenovo USB 16TB 3.0 USB Flash Drive Thumb Disk Silver Transfer Metal Memory

$24.99


Mechanical Style Flash Drive USB 3.0 High Speed 16TB Large Capacity Waterproof picture

Mechanical Style Flash Drive USB 3.0 High Speed 16TB Large Capacity Waterproof

$8.37


Sandisk 16GB 32GB 64GB 128GB Cruzer Blade Flash Drive Memory Stick USB Lot Pack picture

Sandisk 16GB 32GB 64GB 128GB Cruzer Blade Flash Drive Memory Stick USB Lot Pack

$4.99


2TB USB 3.0 Flash Drive Memory Photo Stick for iPhone Android iPad Type C 3 IN1 picture

2TB USB 3.0 Flash Drive Memory Photo Stick for iPhone Android iPad Type C 3 IN1

$13.00


1TB/2TB USB 3.0 Flash Drive Thumb U Disk Memory Stick Pen PC Laptop Storage lot picture

1TB/2TB USB 3.0 Flash Drive Thumb U Disk Memory Stick Pen PC Laptop Storage lot

$388.39


USB 3.0 Flash Drive 32GB 64GB 128GB Memory Stick Thumb Stick Lot Pack picture

USB 3.0 Flash Drive 32GB 64GB 128GB Memory Stick Thumb Stick Lot Pack

$399.99


Discussions

No Discussions have been posted on this vulnerability.