SSH < 3.1.2 AllowedAuthentications Remote Bypass (deprecated)

low Nessus Network Monitor Plugin ID 1982

Synopsis

The remote host may give an attacker information useful for future attacks.

Description

The remote host is running a version of the SSH daemon older than 3.1.2 or equal to 3.0.0. There is a vulnerability in this release that may, under some circumstances, allow users to authenticate using a password whereas it is not explicitly listed as a valid authentication mechanism. An attacker may use this flaw to brute force a password using a dictionary attack (if the password used is weak).

Solution

Upgrade to SSH 3.1.2 or higher.

Plugin Details

Severity: Low

ID: 1982

Family: SSH

Published: 8/20/2004

Updated: 3/6/2019

Nessus ID: 10965

Risk Information

VPR

Risk Factor: Medium

Score: 6.6

CVSS v2

Risk Factor: Low

Base Score: 3.5

Temporal Score: 3.5

Vector: CVSS2#AV:N/AC:M/Au:S/C:N/I:P/A:N

CVSS v3

Risk Factor: Low

Base Score: 3.1

Temporal Score: 3.1

Vector: CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N

Temporal Vector: CVSS:3.0/E:H/RL:U/RC:C

Reference Information

CVE: CVE-2002-1646, CVE-2005-0962

BID: 12944, 4810

Detections

Analytics