OVAL Reference oval:org.cisecurity:def:407

Oval Definition:

oval:org.cisecurity:def:407

Revision Date:	2016-03-11	Version:	10
Title:	Vulnerabilities in OpenSSH affect AIX
Description:	OpenSSH could allow a remote attacker to obtain sensitive information, caused by a client information leak from using the roaming connection feature. By persuading a victim to connect to a malicious server, an attacker could exploit this vulnerability to retrieve private cryptographic keys or other sensitive information.
Family:	unix	Class:	vulnerability
Status:	ACCEPTED	Reference(s):	CVE-2016-0777
Platform(s):	IBM AIX 6.1 IBM AIX 7.1	Product(s):
Definition Synopsis
platforms IBM AIX 6.1 is installed OR IBM AIX 7.1 is installed AND File Version Exists openssh.base.server greater than or equal 4.0.0.5200 AND openssh.base.server less than or equal 6.0.0.6201 AND NOT Interim fix IV80743m9a.160127 (vuid: 00F850C34C00012707015016) is installed