• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

SSH client xauth Vulnerability

Bugtraq ID:	1006
Class:	Configuration Error
CVE:
Remote:	Yes
Local:	Yes
Published:	Feb 24 2000 12:00AM
Updated:	Feb 24 2000 12:00AM
Credit:	This vulnerability was posted to the Bugtraq mailing list by Brian Caswell <cazz@ruff.cs.jmu.edu> on February 24, 2000.
Vulnerable:	SSH Communications Security SSH2 2.0.12 SSH Communications Security SSH2 2.0.11 SSH Communications Security SSH2 2.0.10 SSH Communications Security SSH2 2.0.9 SSH Communications Security SSH2 2.0.8 SSH Communications Security SSH2 2.0.7 SSH Communications Security SSH2 2.0.6 SSH Communications Security SSH2 2.0.5 SSH Communications Security SSH2 2.0.4 SSH Communications Security SSH2 2.0.3 SSH Communications Security SSH2 2.0.2 SSH Communications Security SSH2 2.0.1 SSH Communications Security SSH2 2.0 SSH Communications Security SSH 1.2.27 - Debian Linux 2.2 sparc - Debian Linux 2.2 powerpc - Debian Linux 2.2 arm - Debian Linux 2.2 alpha - Debian Linux 2.2 68k - Debian Linux 2.2 SSH Communications Security SSH 1.2.26 SSH Communications Security SSH 1.2.25 SSH Communications Security SSH 1.2.24 SSH Communications Security SSH 1.2.23 SSH Communications Security SSH 1.2.22 SSH Communications Security SSH 1.2.21 SSH Communications Security SSH 1.2.20 SSH Communications Security SSH 1.2.19 SSH Communications Security SSH 1.2.18 SSH Communications Security SSH 1.2.17 SSH Communications Security SSH 1.2.16 SSH Communications Security SSH 1.2.15 SSH Communications Security SSH 1.2.14 SSH Communications Security SSH 1.2.13 SSH Communications Security SSH 1.2.12 SSH Communications Security SSH 1.2.11 SSH Communications Security SSH 1.2.10 SSH Communications Security SSH 1.2.9 SSH Communications Security SSH 1.2.8 SSH Communications Security SSH 1.2.7 SSH Communications Security SSH 1.2.6 SSH Communications Security SSH 1.2.5 SSH Communications Security SSH 1.2.4 SSH Communications Security SSH 1.2.3 SSH Communications Security SSH 1.2.2 SSH Communications Security SSH 1.2.1 OpenBSD OpenSSH 1.2
Not Vulnerable:	OpenBSD OpenSSH 1.2.3 + Debian Linux 2.2 sparc + Debian Linux 2.2 powerpc + Debian Linux 2.2 arm + Debian Linux 2.2 alpha + Debian Linux 2.2 68k + Debian Linux 2.2