• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Multiple SSH Client Protocol Change Default Warning Weakness

Bugtraq ID:	5284
Class:	Design Error
CVE:
Remote:	Yes
Local:	No
Published:	Jul 22 2002 12:00AM
Updated:	Jul 22 2002 12:00AM
Credit:	Credited to stealth <stealth@segfault.net>.
Vulnerable:	SSH Communications Security SSH2 for Win32 3.1.2 SSH Communications Security SSH2 for Win32 3.1.1 SSH Communications Security SSH2 for Win32 3.1 SSH Communications Security SSH2 for Unix 3.1.2 SSH Communications Security SSH2 for Unix 3.1.1 SSH Communications Security SSH2 for Unix 3.1 SSH Communications Security SSH2 3.0.1 SSH Communications Security SSH2 3.0 SSH Communications Security SSH2 2.5 - Microsoft Windows 2000 Professional - Microsoft Windows 95 - Microsoft Windows 98 - Microsoft Windows NT 4.0 SSH Communications Security SSH2 2.4 - Microsoft Windows 2000 Professional - Microsoft Windows 95 - Microsoft Windows 98 - Microsoft Windows NT 4.0 SSH Communications Security SSH2 2.3 SSH Communications Security SSH2 2.2 SSH Communications Security SSH2 2.1 SSH Communications Security SSH2 2.0.12 SSH Communications Security SSH2 2.0.11 SSH Communications Security SSH2 2.0.10 SSH Communications Security SSH2 2.0.9 SSH Communications Security SSH2 2.0.8 SSH Communications Security SSH2 2.0.7 SSH Communications Security SSH2 2.0.6 SSH Communications Security SSH2 2.0.5 SSH Communications Security SSH2 2.0.4 SSH Communications Security SSH2 2.0.3 SSH Communications Security SSH2 2.0.2 SSH Communications Security SSH2 2.0.1 SSH Communications Security SSH2 2.0 OpenSSH OpenSSH 3.4 p1 + Conectiva Linux 8.0 + Conectiva Linux 7.0 + Conectiva Linux 6.0 + Conectiva Linux Enterprise Edition 1.0 + Debian Linux 3.0 sparc + Debian Linux 3.0 s/390 + Debian Linux 3.0 ppc + Debian Linux 3.0 mipsel + Debian Linux 3.0 mips + Debian Linux 3.0 m68k + Debian Linux 3.0 ia-64 + Debian Linux 3.0 ia-32 + Debian Linux 3.0 hppa + Debian Linux 3.0 arm + Debian Linux 3.0 alpha + FreeBSD FreeBSD 5.0 + FreeBSD FreeBSD 4.7 -RELEASE + FreeBSD FreeBSD 4.7 + IBM AIX 5.1 L + IBM AIX 4.3.3 + Immunix Immunix OS 7+ + RedHat Linux 8.0 + S.u.S.E. Linux 8.1 + S.u.S.E. Linux 8.0 + Slackware Linux 8.1 OpenSSH OpenSSH 3.4 OpenSSH OpenSSH 3.3 p1 + Conectiva Linux 8.0 + Conectiva Linux 7.0 + Conectiva Linux 6.0 OpenSSH OpenSSH 3.3 + Openwall Openwall GNU/*/Linux (Owl)-current OpenSSH OpenSSH 3.2.3 p1 OpenSSH OpenSSH 3.2.2 p1 + Apple Mac OS X 10.1.5 + Apple Mac OS X 10.1.4 + Apple Mac OS X 10.1.3 + Apple Mac OS X 10.1.2 + Apple Mac OS X 10.1.1 + Apple Mac OS X 10.1 + Apple Mac OS X 10.1 + Apple Mac OS X 10.0.4 + Apple Mac OS X 10.0.3 + Apple Mac OS X 10.0.2 + Apple Mac OS X 10.0.1 + Apple Mac OS X 10.0 OpenSSH OpenSSH 3.2 + OpenBSD OpenBSD 3.1 OpenSSH OpenSSH 3.1 p1 + Juniper Networks NetScreen-IDP 10 3.0 r2 + Juniper Networks NetScreen-IDP 10 3.0 r1 + Juniper Networks NetScreen-IDP 10 3.0 + Juniper Networks NetScreen-IDP 100 3.0 r2 + Juniper Networks NetScreen-IDP 100 3.0 r1 + Juniper Networks NetScreen-IDP 100 3.0 + Juniper Networks NetScreen-IDP 1000 3.0 r2 + Juniper Networks NetScreen-IDP 1000 3.0 r1 + Juniper Networks NetScreen-IDP 1000 3.0 + Juniper Networks NetScreen-IDP 500 3.0 r2 + Juniper Networks NetScreen-IDP 500 3.0 r1 + Juniper Networks NetScreen-IDP 500 3.0 + RedHat Enterprise Linux AS 2.1 IA64 + RedHat Enterprise Linux AS 2.1 + RedHat Enterprise Linux ES 2.1 IA64 + RedHat Enterprise Linux ES 2.1 + RedHat Enterprise Linux WS 2.1 IA64 + RedHat Enterprise Linux WS 2.1 + RedHat Linux 7.3 + RedHat Linux 7.2 + RedHat Linux 7.1 + RedHat Linux for iSeries 7.1 + RedHat Linux for pSeries 7.1 + Slackware Linux 8.1 + Sun Linux 5.0.7 + Sun Solaris 9 + Trustix Secure Linux 1.5 + Trustix Secure Linux 1.2 + Trustix Secure Linux 1.1 OpenSSH OpenSSH 3.1 OpenSSH OpenSSH 3.0.2 p1 + Guardian Digital Engarde Secure Linux 1.0.1 + HP VirtualVault 4.6 OpenSSH OpenSSH 3.0.2 - Debian Linux 3.0 + FreeBSD FreeBSD 4.5 -STABLEpre2002-03-07 + FreeBSD FreeBSD 4.5 -RELEASE + OpenPKG OpenPKG 1.0 + Openwall Openwall GNU/*/Linux 0.1 -stable + S.u.S.E. Linux 8.0 OpenSSH OpenSSH 3.0.1 p1 OpenSSH OpenSSH 3.0.1 OpenSSH OpenSSH 3.0 p1 OpenSSH OpenSSH 3.0 OpenSSH OpenSSH 2.9.9 + NetBSD NetBSD 1.5.2 + S.u.S.E. Linux 7.3 sparc + S.u.S.E. Linux 7.3 ppc + S.u.S.E. Linux 7.3 i386 + S.u.S.E. Linux 7.2 OpenSSH OpenSSH 2.9 p2 + Caldera OpenLinux Server 3.1.1 + Caldera OpenLinux Server 3.1 + Caldera OpenLinux Workstation 3.1.1 + Caldera OpenLinux Workstation 3.1 + Conectiva Linux 8.0 + Conectiva Linux 7.0 + Conectiva Linux 6.0 - Conectiva Linux 5.0 - Conectiva Linux graficas - Conectiva Linux ecommerce + FreeBSD FreeBSD 4.4 -RELENG + HP Secure OS software for Linux 1.0 + Immunix Immunix OS 7.0 + MandrakeSoft Corporate Server 1.0.1 + MandrakeSoft Linux Mandrake 8.1 + MandrakeSoft Linux Mandrake 8.0 ppc + MandrakeSoft Linux Mandrake 8.0 + MandrakeSoft Linux Mandrake 7.2 + MandrakeSoft Linux Mandrake 7.1 + MandrakeSoft Single Network Firewall 7.2 + RedHat Linux 7.2 + RedHat Linux 7.1 + RedHat Linux 7.0 - S.u.S.E. Linux 7.3 sparc - S.u.S.E. Linux 7.3 ppc - S.u.S.E. Linux 7.3 i386 - S.u.S.E. Linux 7.2 i386 - S.u.S.E. Linux 7.1 x86 - S.u.S.E. Linux 7.1 sparc - S.u.S.E. Linux 7.1 ppc - S.u.S.E. Linux 7.1 alpha + Sun Cobalt RaQ 550 OpenSSH OpenSSH 2.9 p1 - IBM AIX 4.3.3 - IBM AIX 4.3.2 - IBM AIX 4.3.1 - IBM AIX 4.3 OpenSSH OpenSSH 2.9 + FreeBSD FreeBSD 4.6 -RELEASE + FreeBSD FreeBSD 4.6 + FreeBSD FreeBSD 4.5 -RELEASE + FreeBSD FreeBSD 4.5 OpenSSH OpenSSH 2.5.2 - Caldera OpenUnix 8.0 - Caldera UnixWare 7.1.1 - Wirex Immunix OS 6.2 OpenSSH OpenSSH 2.5.1 + NetBSD NetBSD 1.5.1 + S.u.S.E. Linux 7.3 + S.u.S.E. Linux 7.2 + S.u.S.E. Linux 7.1 + S.u.S.E. Linux Database Server 0 + S.u.S.E. Linux Enterprise Server 7 + S.u.S.E. Linux Firewall on CD + S.u.S.E. SuSE eMail Server III - SCO Open Server 5.0.6 a - SCO Open Server 5.0.6 - SCO Open Server 5.0.5 - SCO Open Server 5.0.4 - SCO Open Server 5.0.3 - SCO Open Server 5.0.2 - SCO Open Server 5.0.1 - SCO Open Server 5.0 OpenSSH OpenSSH 2.5 OpenSSH OpenSSH 2.3 - S.u.S.E. Linux 7.0 sparc - S.u.S.E. Linux 7.0 ppc - S.u.S.E. Linux 7.0 i386 - S.u.S.E. Linux 7.0 alpha - S.u.S.E. Linux 6.4 ppc - S.u.S.E. Linux 6.4 i386 - S.u.S.E. Linux 6.4 alpha OpenSSH OpenSSH 2.2 + Conectiva Linux 6.0 + NetBSD NetBSD 1.5 OpenSSH OpenSSH 2.1.1 + Conectiva Linux 5.1 + S.u.S.E. Linux 7.0 sparc + S.u.S.E. Linux 7.0 ppc + S.u.S.E. Linux 7.0 i386 + S.u.S.E. Linux 7.0 alpha OpenSSH OpenSSH 2.1
Not Vulnerable: