SSH < 3.1.2 AllowedAuthentications Remote Bypass (deprecated)

Low Nessus Network Monitor Plugin ID 1982

Synopsis

The remote host may give an attacker information useful for future attacks.

Description

The remote host is running a version of the SSH daemon older than 3.1.2 or equal to 3.0.0. There is a vulnerability in this release that may, under some circumstances, allow users to authenticate using a password whereas it is not explicitly listed as a valid authentication mechanism. An attacker may use this flaw to brute force a password using a dictionary attack (if the password used is weak).

Solution

Upgrade to SSH 3.1.2 or higher.

Plugin Details

Severity: Low

ID: 1982

File Name: 1982.prm

Family: SSH

Published: 2004/08/20

Modified: 2016/02/05

Dependencies: 1967, 3059

Nessus ID: 10965

Risk Information

Risk Factor: Low

CVSSv2

Base Score: 3.5

Temporal Score: 3.5

Vector: CVSS2#AV:N/AC:M/Au:S/C:N/I:P/A:N

Temporal Vector: CVSS2#E:H/RL:U/RC:C

CVSSv3

Base Score: 3

Temporal Score: 3

Vector: CVSS3#AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N

Temporal Vector: CVSS3#E:H/RL:U/RC:C

Reference Information

CVE: CVE-2005-0962, CVE-2002-1646

BID: 12944, 4810