IBM AIX update for OpenSSH - Secunia Advisories - Vulnerability Intelligence - Secunia.com

Vulnerability Intelligence

Vulnerability Scanning

Corporate Information

Secunia Advisories

Secunia Research

Binary Analysis

Home > Vulnerability Intelligence > Secunia Advisories > IBM AIX update for OpenSSH

Secunia Advisories

Advisories by Product

Advisories by Vendor

Historic Advisories

Report Vulnerability

Business Solutions Restricted

Restricted

Partner Solutions Restricted

Restricted

IBM AIX update for OpenSSH
Secunia Advisory:	SA30361	Advisory Toolbox: Issue ticket Save in to-do list Mark as handled Exploit information Download as PDF Review actions Add comment
Release Date:	2008-05-22
Popularity:	3,194 views

Critical:	Less critical
Impact:	Security Bypass Exposure of sensitive information
Where:	Local system
Solution Status:	Vendor Patch

OS:	AIX 5.x AIX 6.x

Subscribe:	Instant alerts on relevant vulnerabilities

CVE reference:	CVE-2008-1483 CVE-2008-1657

Description: IBM has acknowledged some vulnerabilities in OpenSSH, which can be exploited by malicious, local users to bypass certain security restrictions or disclose sensitive information. For more information: SA29522 SA29602 Solution: Apply fix. AIX 5.2: http://downloads.sourceforge.net/openssh-aix/openssh-4.7_5201.tar.Z AIX 5.3: http://downloads.sourceforge.net/openssh-aix/openssh-4.7_5301.tar.Z AIX 6.1: http://downloads.sourceforge.net/openssh-aix/openssh-4.7_5301aix61.tar.Z Original Advisory: http://aix.software.ibm.com/aix/efixes/security/ssh_advisory.asc Other References: SA29522: http://secunia.com/advisories/29522/ SA29602: http://secunia.com/advisories/29602/

Track this Secunia Advisory
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released. Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.

About this Secunia Advisory
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise. Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.

Latest Advisories

5th Sep, 2008

New advisories:	14
New vulnerabilities:	18
Updated advisories:	22

Less // 292 views

Netgear WN802T Wireless Access Point Two Vulnerabilities

Less // 232 views

Fedora update for xastir

Less // 293 views

XASTIR Insecure Temporary Files

Less // 238 views

Fedora update for samba

Less // 243 views

Fedora update for bitlbee

Less // 639 views

3Com Wireless 8760 Access Point HTTP Request Processing Denial of Service

Moderately // 527 views

CS-Cart "cs_cookies" SQL Injection Vulnerability

Less // 614 views

Drupal Content Construction Kit Script Insertion Vulnerabilities

Less // 605 views

HP OpenView Select Identity Connectors Information Disclosure

Moderately // 487 views

rPath update for libtiff

Solutions | More...

Send Feedback to Secunia
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com. Ideas, suggestions, and other feedback are most welcome.

Most Popular - 3 Hours

1.	Subdreamer Light Global Variables SQL Injection Vulnerability // 64 views
2.	Adobe Flash Player Multiple Vulnerabilities // 42 views
3.	Microsoft Office Two Code Execution Vulnerabilities // 19 views
4.	VLC Media Player Multiple Vulnerabilities // 18 views
5.	Microsoft Word Malformed Object Pointer Vulnerability // 18 views
6.	Opera Multiple Vulnerabilities // 17 views
7.	Netgear WN802T Wireless Access Point Two Vulnerabilities // 14 views
8.	Sun Java System Web Proxy Server SOCKS Module Buffer Overflows // 14 views
9.	Microsoft Office Excel Multiple Vulnerabilities // 13 views
10.	phpBB "cur_password" Cross-Site Scripting Vulnerability // 12 views

Contact | Terms & Conditions | Report Vulnerability | Press | Jobs | About Secunia
Copyright Secunia 2002-2008