Oval Definition:	oval:org.mitre.oval:def:9894
Revision Date: 2013-04-29 Version: 11 Title: OpenSSH 3.6.1 and earlier, when restricting host access by numeric IP addresses and with VerifyReverseMapping disabled, allows remote attackers to bypass "from=" and "user@host" address restrictions by connecting to a host from a system whose reverse DNS hostname contains the numeric IP address. Description: OpenSSH 3.6.1 and earlier, when restricting host access by numeric IP addresses and with VerifyReverseMapping disabled, allows remote attackers to bypass "from=" and "user@host" address restrictions by connecting to a host from a system whose reverse DNS hostname contains the numeric IP address. Family: unix Class: vulnerability Status: ACCEPTED Reference(s): CVE-2003-0386 Platform(s): CentOS Linux 3 Red Hat Enterprise Linux 3 Product(s): Definition Synopsis RHEL3 or CentOS3 The operating system installed on the system is Red Hat Enterprise Linux 3 OR CentOS Linux 3.x AND Configuration section openssh is earlier than 0:3.6.1p2-33.30.9 OR openssh-askpass is earlier than 0:3.6.1p2-33.30.9 OR openssh-server is earlier than 0:3.6.1p2-33.30.9 OR openssh-clients is earlier than 0:3.6.1p2-33.30.9 OR openssh-askpass-gnome is earlier than 0:3.6.1p2-33.30.9
BACK