Oval Definition:oval:org.mitre.oval:def:19595
Revision Date:2015-04-20Version:29
Title:HP-UX Running HP Secure Shell, Remote Denial of Service (DoS)
Description:The default configuration of OpenSSH through 6.1 enforces a fixed time limit between establishing a TCP connection and completing a login, which makes it easier for remote attackers to cause a denial of service (connection-slot exhaustion) by periodically making many new TCP connections.
Family:unixClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2010-5107
Platform(s):HP-UX 11
Product(s):
Definition Synopsis
  • Criteria meets HP Security Bulletin HPSBUX02886
  • HP-UX B.11.11
  • AND Secure_Shell.SECURE_SHELL version is less than A.06.20.001
  • OR Criteria meets HP Security Bulletin HPSBUX02886
  • HP-UX B.11.23
  • AND filesets tests
  • Secure_Shell.SECSH-CMN version is less than A.06.20.002
  • OR Secure_Shell.SECURE_SHELL version is less than A.06.20.002
  • OR Criteria meets HP Security Bulletin HPSBUX02886
  • HP-UX B.11.31
  • AND filesets tests
  • Secure_Shell.SECSH-CMN version is less than A.06.20.003
  • OR Secure_Shell.SECURE_SHELL version is less than A.06.20.003
    • BACK