Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

Sun Solaris sshd Timeout Mechanism Remote Denial of Service

Medium

Synopsis

The remote SSH server is vulnerable to a remote denial of service attack.

Description

The remote Solaris 10 host appears to be running the Solaris sshd daemon earlier than version 1.1.3. Such versions are potentially affected by a denial-of-service vulnerability in the timeout mechanism. An unprivileged attacker, exploiting this flaw, could crash the affected service.

Solution

Apply patch 143140-01 or later, as referenced above.