libssh 0.6.x / 0.7.x < 0.7.6 / 0.8.x < 0.8.4 Authentication Bypass (Remote Version Check)
High Nessus Plugin ID 118155
SynopsisThe remote server is vulnerable to an authentication bypass.
DescriptionAccording to its banner version, the remote libssh based server is vulnerable to an authentication bypass. An attacker can bypass authentication by presenting a SSH2_MSG_USERAUTH_SUCCESS message in place of the SSH2_MSG_USERAUTH_REQUEST method that normally would initiate authentication.
Note that Nessus did not actually test for the flaw but instead has relied on the version in the libssh banner so this may be a false positive.
SolutionUpgrade to libssh 0.7.6 / 0.8.4 or later.