Vulnerabilities > CVE-2004-1357 - Unspecified vulnerability in SUN Solaris 9.0
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
NONE Summary
The Secure Shell (SSH) Daemon (SSHD) in Sun Solaris 9 does not properly log IP addresses when SSHD is configured with the ListenAddress as 0.0.0.0, which makes it easier for remote attackers to hide the source of their activities.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
OS | 2 |
Oval
accepted | 2005-10-12T05:49:00.000-04:00 | ||||
class | vulnerability | ||||
contributors |
| ||||
description | The Secure Shell (SSH) Daemon (SSHD) in Sun Solaris 9 does not properly log IP addresses when SSHD is configured with the ListenAddress as 0.0.0.0, which makes it easier for remote attackers to hide the source of their activities. | ||||
family | unix | ||||
id | oval:org.mitre.oval:def:3505 | ||||
status | accepted | ||||
submitted | 2005-04-13T04:00:00.000-04:00 | ||||
title | sshd Log Bypass Vulnerability | ||||
version | 36 |
References
- http://secunia.com/advisories/11316/
- http://sunsolve.sun.com/search/document.do?assetkey=1-26-57538-1
- http://www.auscert.org.au/render.html?it=4003
- http://www.kb.cert.org/vuls/id/737548
- http://www.securityfocus.com/bid/10080
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15784
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3505