Lysator LSH Seed-file File Descriptor Leak (deprecated)
Low Nessus Network Monitor Plugin ID 3380
SynopsisThe remote host is vulnerable to multiple attack vectors.
DescriptionThe remote host is running Lysator's LSH, a version of Secure Shell (SSH) that is available for Unix-like platforms. This version of LSH is reported to be vulnerable to a local flaw. Specifically, this version of LSH leaks its file descriptors. A local attacker armed with this knowledge may be able to access confidential data or cause the LSH server to fail.
SolutionUpgrade or patch according to vendor recommendations.