Home Corporate Website Jobs Updated Mailing Lists RSS Blog  Online Shop Advertise
	Software Inspectors   Scan Online   Personal (PSI)   Network (NSI 2.0) Solutions For   Security Professionals   Security Vendors Free Solutions For   Open Communities   Journalists & Media Secunia Advisories   Search   Historic Advisories   Listed By Product   Listed By Vendor   Statistics / Graphs   Secunia Research   Report Vulnerability   About Advisories Virus Information   Chronological List   Last 10 Virus Alerts   About Virus Information Secunia Customers   Customer Area CVE Reference: CVE-2005-2798 NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. Original Page at CVE MITRE: CVE-2005-2798 Description: sshd in OpenSSH before 4.2, when GSSAPIDelegateCredentials is enabled, allows GSSAPI credentials to be delegated to clients who log in using non-GSSAPI methods, which could cause those credentials to be exposed to untrusted users or hosts. CVE Status: Candidate References: XF   http://xforce.iss.net/xforce/xfdb/24064 UBUNTU   http://www.ubuntulinux.org/support/documentation/usn/usn-209-1 SUSE   http://lists.suse.com/archive/suse-security-announce/2006-Feb/0001.html ST   1014845 SCO SAID   Secunia Advisory: SA17245   Secunia Advisory: SA17077   Secunia Advisory: SA18010   Secunia Advisory: SA18406   Secunia Advisory: SA16686   Secunia Advisory: SA18717   Secunia Advisory: SA18507   Secunia Advisory: SA22006033 REDHAT   http://www.redhat.com/support/errata/RHSA-2005-527.html OVAL   http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1566   http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1345 OSVDB   19141 MLIST   http://www.mindrot.org/pipermail/openssh-unix-announce/2005-September/000083.html MANDRIVA   http://www.mandriva.com/security/advisories?name=MDKSA-2005:172 HP   http://www.securityfocus.com/archive/1/archive/1/421411/100/0/threaded CONFIRM   http://support.avaya.com/elmodocs2/security/ASA-2006-016.htm BID   14729 Return to the previous page. Secunia PSI Scan | Patch | Track Free Download Secunia Poll Do you think it's important to read Setup/User Guides for applications for use within your network? Yes, I do it all the time Yes, but I do it rarely No See Results    Most Popular Advisories 1. IBM DB2 CLR Stored Procedures Unspecified Vulnerability 2. HP Enterprise Discovery Unspecified Privilege Escalation 3. Xoops PopnupBlog Module "index.php" Cross-Site Scripting 4. DriveCrypt Plus Pack Password Disclosure Security Issue 5. IBM Lotus Quickr Multiple Cross-Site Scripting Vulnerabilities 6. K-Rate Premium Multiple Vulnerabilities 7. Sun Solaris NFS RPC Zones Denial of Service 8. Red Hat update for kernel 9. Sharity Unspecified Vulnerability 10. AWStats Totals Cross-site Scripting and PHP Code Execution
Vulnerability Management - Terms & Conditions - Copyright 2002-2008 Secunia - Compliance - Contact Secunia