SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Application (VPN)  >   OpenSSH Vendors:   OpenSSH.org
OpenSSH DNS SSH Fingerprint Record Check Can Be Bypassed By Remote Users
SecurityTracker Alert ID:  1029971
SecurityTracker URL:  http://securitytracker.com/id/1029971
CVE Reference:   CVE-2014-2653   (Links to External Site)
Date:  Mar 28 2014
Impact:   Host/resource access via network

Version(s): 6.6
Description:   A vulnerability was reported in OpenSSH. A remote user can bypass checks for SSHFP records.

A remote server can return a HostCertificate. If the target user's client does not accept the HostCertificate, the client will fail to check for SSH fingerprint (SSHFP) records.

Impact:   A remote user can bypass checks for SSHFP records.
Solution:   No solution was available at the time of this entry.
Vendor URL:  www.openssh.org/ (Links to External Site)
Cause:   Access control error
Underlying OS:  Linux (Any), UNIX (Any), Windows (Any)

Message History:   This archive entry has one or more follow-up message(s) listed below.
Jun 18 2014 (IBM Issues Fix for IBM AIX) OpenSSH DNS SSH Fingerprint Record Check Can Be Bypassed By Remote Users
IBM has issued a fix for IBM AIX 5.3, 6.1, and 7.1.
Mar 6 2015 (Red Hat Issues Fix) OpenSSH DNS SSH Fingerprint Record Check Can Be Bypassed By Remote Users
Red Hat has issued a fix for Red Hat Enterprise Linux 7.
Jul 29 2015 (FreeBSD Issues Fix) OpenSSH DNS SSH Fingerprint Record Check Can Be Bypassed By Remote Users
FreeBSD has issued a fix for FreeBSD 8.4, 9.3, and 10.1.
Jun 14 2018 (McAfee Issues Fix for McAfee Email Gateway) OpenSSH DNS SSH Fingerprint Record Check Can Be Bypassed By Remote Users
McAfee has issued a fix for McAfee Email Gateway.



 Source Message Contents



[Original Message Not Available for Viewing]


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2019, SecurityGlobal.net LLC