FreeBSD SSH Port Extra Network Port Listening Vulnerability

A vulnerability exists in the FreeBSD 'ports' version of SSH. A patch was added to allow sshd to listen on multiple ports. At the same time, the configuration file was inadvertently altered to make sshd listen on both port 22, which is normal, and port 722. This could affect users who are firewalling off services, and do not realize sshd is running on port 722.

This does not represent a vulnerability in sshd. It is a misconfiguration only. In addition, this vulnerability is unlikely to have any real impact in normal scenarios, as the sshd listening to port 722 behaves as normal; authentication is still required.


 

Privacy Statement
Copyright 2010, SecurityFocus