Oval Definition:oval:org.mitre.oval:def:1566
Revision Date:2006-02-22Version:16
Title:Leaking GSSAPI Credentials Vulnerability (B.11.00/B.11.11)
Description:sshd in OpenSSH before 4.2, when GSSAPIDelegateCredentials is enabled, allows GSSAPI credentials to be delegated to clients who log in using non-GSSAPI methods, which could cause those credentials to be exposed to untrusted users or hosts.
Family:unixClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2005-2798
Platform(s):HP-UX 11
Product(s):SecureShell
Definition Synopsis
  • 700 Series or 800 Series OS Release 11.00 or 11.11
  • 700 Series or 800 Series OS Release 11.11
  • 700 Series OS Release 11.11
  • 700-series HP
  • AND HP Release B.11.11
  • OR 800 Series OS Release 11.11
  • 800-series HP
  • AND HP Release B.11.11
  • OR 700 Series or 800 Series OS Release 11.00
  • 700 Series OS Release 11.00
  • 700-series HP
  • AND HP Release B.11.00
  • OR 800 Series OS Release 11.00
  • 800-series HP
  • AND HP Release B.11.00
  • AND Secure_Shell.SECURE_SHELL is installed
  • AND NOT Secure_Shell.SECURE_SHELL with version less than A.04.20.004 is installed
    • BACK