• info
• discussion
• exploit
• solution
• references

OpenSSH DynamicForward Inadvertent GatewayPorts Activation Vulnerability

Solution:
Please see the referenced vendor advisories for more information.

The vendor has released version 4.2 of OpenSSH to address this issue.


Slackware Linux -current

• Slackware openssh-4.2p1-i486-1.tgz
  ftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/n/op enssh-4.2p1-i486-1.tgz

OpenSSH OpenSSH 4.0 p1

• OpenSSH openssh-4.2.tar.gz
  ftp://ftp.openbsd.org/pub/OpenBSD/OpenSSH/openssh-4.2.tar.gz


• RedHat Fedora openssh-4.2p1-fc4.1.i386.rpm
  Fedora Core 4
  http://download.fedora.redhat.com/pub/fedora/linux/core/updates/4/


• RedHat Fedora openssh-4.2p1-fc4.1.ppc.rpm
  Fedora Core 4
  http://download.fedora.redhat.com/pub/fedora/linux/core/updates/4/


• RedHat Fedora openssh-4.2p1-fc4.1.x86_64.rpm
  Fedora Core 4
  http://download.fedora.redhat.com/pub/fedora/linux/core/updates/4/


• RedHat Fedora openssh-askpass-4.2p1-fc4.1.i386.rpm
  Fedora Core 4
  http://download.fedora.redhat.com/pub/fedora/linux/core/updates/4/


• RedHat Fedora openssh-askpass-4.2p1-fc4.1.ppc.rpm
  Fedora Core 4
  http://download.fedora.redhat.com/pub/fedora/linux/core/updates/4/


• RedHat Fedora openssh-askpass-4.2p1-fc4.1.x86_64.rpm
  Fedora Core 4
  http://download.fedora.redhat.com/pub/fedora/linux/core/updates/4/


• RedHat Fedora openssh-askpass-gnome-4.2p1-fc4.1.i386.rpm
  Fedora Core 4
  http://download.fedora.redhat.com/pub/fedora/linux/core/updates/4/


• RedHat Fedora openssh-askpass-gnome-4.2p1-fc4.1.ppc.rpm
  Fedora Core 4
  http://download.fedora.redhat.com/pub/fedora/linux/core/updates/4/


• RedHat Fedora openssh-askpass-gnome-4.2p1-fc4.1.x86_64.rpm
  Fedora Core 4
  http://download.fedora.redhat.com/pub/fedora/linux/core/updates/4/


• RedHat Fedora openssh-clients-4.2p1-fc4.1.i386.rpm
  Fedora Core 4
  http://download.fedora.redhat.com/pub/fedora/linux/core/updates/4/


• RedHat Fedora openssh-clients-4.2p1-fc4.1.ppc.rpm
  Fedora Core 4
  http://download.fedora.redhat.com/pub/fedora/linux/core/updates/4/


• RedHat Fedora openssh-clients-4.2p1-fc4.1.x86_64.rpm
  Fedora Core 4
  http://download.fedora.redhat.com/pub/fedora/linux/core/updates/4/


• RedHat Fedora openssh-debuginfo-4.2p1-fc4.1.i386.rpm
  Fedora Core 4
  http://download.fedora.redhat.com/pub/fedora/linux/core/updates/4/


• RedHat Fedora openssh-debuginfo-4.2p1-fc4.1.ppc.rpm
  Fedora Core 4
  http://download.fedora.redhat.com/pub/fedora/linux/core/updates/4/


• RedHat Fedora openssh-debuginfo-4.2p1-fc4.1.x86_64.rpm
  Fedora Core 4
  http://download.fedora.redhat.com/pub/fedora/linux/core/updates/4/


• RedHat Fedora openssh-server-4.2p1-fc4.1.i386.rpm
  Fedora Core 4
  http://download.fedora.redhat.com/pub/fedora/linux/core/updates/4/


• RedHat Fedora openssh-server-4.2p1-fc4.1.ppc.rpm
  Fedora Core 4
  http://download.fedora.redhat.com/pub/fedora/linux/core/updates/4/


• RedHat Fedora openssh-server-4.2p1-fc4.1.x86_64.rpm
  Fedora Core 4
  http://download.fedora.redhat.com/pub/fedora/linux/core/updates/4/

OpenSSH OpenSSH 4.0

• OpenSSH openssh-4.2.tar.gz
  ftp://ftp.openbsd.org/pub/OpenBSD/OpenSSH/openssh-4.2.tar.gz

OpenSSH OpenSSH 4.1

• OpenSSH openssh-4.2.tar.gz
  ftp://ftp.openbsd.org/pub/OpenBSD/OpenSSH/openssh-4.2.tar.gz

SCO Open Server 5.0.6 a

• SCO openssh42p1_vol.tar
  ftp://ftp.sco.com/pub/openserver5/opensrc/openssh-4.2p1/openssh42p1_vo l.tar

SCO Open Server 5.0.6

• SCO openssh42p1_vol.tar
  ftp://ftp.sco.com/pub/openserver5/opensrc/openssh-4.2p1/openssh42p1_vo l.tar

SCO Open Server 5.0.7

• SCO osr507mp4_vol.tar for SCOSA-2006.11
  ftp://ftp.sco.com/pub/openserver5/507/mp/osr507mp4/osr507mp4_vol.tar

SCO Open Server 6.0

• SCO osr600mp2.iso
  OpenServer 6.0.0
  ftp://ftp.sco.com/pub/openserver6/600/mp/osr600mp2/osr600mp2.iso

SCO Unixware 7.1.3

• SCO SCOSA-2005.53
  UnixWare 7.1.3
  ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.53

SCO Unixware 7.1.4

• SCO SCOSA-2005.53
  UnixWare 7.1.4
  ftp://ftp.sco.com/pub/updates/