icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons_061

OpenBSD Portable OpenSSH < 4.4.p1 GSSAPI Authentication Overflow

High

Synopsis

The remote host is vulnerable to a buffer overflow.

Description

The remote host is running a version of OpenSSH that is vulnerable to a flaw in the way that it handles GSSAPI authentication. If the SSH server is configured to utilize GSSAPI authentication then the host may be compromised by a remote attacker with access to the SSH port (typically 22). Successful exploitation would result in remote code execution.

Solution

Upgrade to version 4.4.p1 or higher.