Oval Definition:	oval:org.mitre.oval:def:11541
Revision Date: 2013-04-29 Version: 11 Title: sshd.c in OpenSSH 3.6.1p2 and 3.7.1p2 and possibly other versions, when using privilege separation, does not properly signal the non-privileged process when a session has been terminated after exceeding the LoginGraceTime setting, which leaves the connection open and allows remote attackers to cause a denial of service (connection consumption). Description: sshd.c in OpenSSH 3.6.1p2 and 3.7.1p2 and possibly other versions, when using privilege separation, does not properly signal the non-privileged process when a session has been terminated after exceeding the LoginGraceTime setting, which leaves the connection open and allows remote attackers to cause a denial of service (connection consumption). Family: unix Class: vulnerability Status: ACCEPTED Reference(s): CVE-2004-2069 Platform(s): CentOS Linux 3 Red Hat Enterprise Linux 3 Product(s): Definition Synopsis RHEL3 or CentOS3 The operating system installed on the system is Red Hat Enterprise Linux 3 OR CentOS Linux 3.x AND Configuration section openssh is earlier than 0:3.6.1p2-33.30.6 OR openssh-askpass is earlier than 0:3.6.1p2-33.30.6 OR openssh-server is earlier than 0:3.6.1p2-33.30.6 OR openssh-clients is earlier than 0:3.6.1p2-33.30.6 OR openssh-askpass-gnome is earlier than 0:3.6.1p2-33.30.6
BACK