Tectia SSH Server < 4.3.2 Local Key Disclosure
Low Nessus Network Monitor Plugin ID 3043
SynopsisThe remote host is vulnerable to a flaw that allows attackers to retrieve sensitive files or data.
DescriptionThe remote host is running the Tectia SSH Server on Microsoft Windows. This version of Tectia is vulnerable to a local attack where Tectia does not properly protect locally stored keys. A local user exploiting this flaw would be able to retrieve keys and exploit trust relationships.
SolutionUpgrade to version 4.3.2 or higher.