|
|
OpenSSH Reverse DNS Lookup Access Control Bypass Vulnerability
|
Bugtraq ID:
|
7831
|
|
Class:
|
Design Error
|
|
CVE:
|
CVE-2003-0386
|
|
Remote:
|
Yes
|
|
Local:
|
No
|
|
Published:
|
Jun 05 2003 12:00AM
|
|
Updated:
|
Oct 02 2006 08:10PM
|
|
Credit:
|
Discovery of this vulnerability credited to Mike Harding <mvh@welkyn.com>.
|
|
Vulnerable:
|
SGI ProPack 3.0 SP6
RedHat Enterprise Linux WS 3
RedHat Enterprise Linux WS 2.1
RedHat Enterprise Linux ES 3
RedHat Enterprise Linux ES 2.1
RedHat Enterprise Linux AS 3
RedHat Enterprise Linux AS 2.1
RedHat Desktop 3.0
RedHat Advanced Workstation for the Itanium Processor 2.1
OpenSSH OpenSSH 3.6.1 p2
+
MandrakeSoft Corporate Server 2.1 x86_64
+
MandrakeSoft Corporate Server 2.1
+
MandrakeSoft Linux Mandrake 9.1 ppc
+
MandrakeSoft Linux Mandrake 9.1
+
MandrakeSoft Linux Mandrake 9.0
+
MandrakeSoft Linux Mandrake 8.2 ppc
+
MandrakeSoft Linux Mandrake 8.2
+
MandrakeSoft Multi Network Firewall 2.0
+
Trustix Secure Linux 2.0
OpenSSH OpenSSH 3.6.1 p1
+
OpenPKG OpenPKG Current
+
Slackware Linux 9.0
+
Slackware Linux -current
OpenSSH OpenSSH 3.6.1
+
Novell Netware 6.5
OpenSSH OpenSSH 3.5
OpenSSH OpenSSH 3.4 p1
+
Conectiva Linux 8.0
+
Conectiva Linux 7.0
+
Conectiva Linux 6.0
+
Conectiva Linux Enterprise Edition 1.0
+
Debian Linux 3.0 sparc
+
Debian Linux 3.0 s/390
+
Debian Linux 3.0 ppc
+
Debian Linux 3.0 mipsel
+
Debian Linux 3.0 mips
+
Debian Linux 3.0 m68k
+
Debian Linux 3.0 ia-64
+
Debian Linux 3.0 ia-32
+
Debian Linux 3.0 hppa
+
Debian Linux 3.0 arm
+
Debian Linux 3.0 alpha
+
FreeBSD FreeBSD 5.0
+
FreeBSD FreeBSD 4.7 -RELEASE
+
FreeBSD FreeBSD 4.7
+
IBM AIX 5.1 L
+
IBM AIX 4.3.3
+
Immunix Immunix OS 7+
+
RedHat Linux 8.0
+
S.u.S.E. Linux 8.1
+
S.u.S.E. Linux 8.0
+
Slackware Linux 8.1
OpenSSH OpenSSH 3.4
OpenSSH OpenSSH 3.3 p1
+
Conectiva Linux 8.0
+
Conectiva Linux 7.0
+
Conectiva Linux 6.0
OpenSSH OpenSSH 3.3
+
Openwall Openwall GNU/*/Linux (Owl)-current
OpenSSH OpenSSH 3.2.3 p1
OpenSSH OpenSSH 3.2.2 p1
+
Apple Mac OS X 10.1.5
+
Apple Mac OS X 10.1.4
+
Apple Mac OS X 10.1.3
+
Apple Mac OS X 10.1.2
+
Apple Mac OS X 10.1.1
+
Apple Mac OS X 10.1
+
Apple Mac OS X 10.1
+
Apple Mac OS X 10.0.4
+
Apple Mac OS X 10.0.3
+
Apple Mac OS X 10.0.2
+
Apple Mac OS X 10.0.1
+
Apple Mac OS X 10.0
OpenSSH OpenSSH 3.2
+
OpenBSD OpenBSD 3.1
OpenSSH OpenSSH 3.1 p1
+
Juniper Networks NetScreen-IDP 10 3.0 r2
+
Juniper Networks NetScreen-IDP 10 3.0 r1
+
Juniper Networks NetScreen-IDP 10 3.0
+
Juniper Networks NetScreen-IDP 100 3.0 r2
+
Juniper Networks NetScreen-IDP 100 3.0 r1
+
Juniper Networks NetScreen-IDP 100 3.0
+
Juniper Networks NetScreen-IDP 1000 3.0 r2
+
Juniper Networks NetScreen-IDP 1000 3.0 r1
+
Juniper Networks NetScreen-IDP 1000 3.0
+
Juniper Networks NetScreen-IDP 500 3.0 r2
+
Juniper Networks NetScreen-IDP 500 3.0 r1
+
Juniper Networks NetScreen-IDP 500 3.0
+
RedHat Enterprise Linux AS 2.1 IA64
+
RedHat Enterprise Linux AS 2.1
+
RedHat Enterprise Linux ES 2.1 IA64
+
RedHat Enterprise Linux ES 2.1
+
RedHat Enterprise Linux WS 2.1 IA64
+
RedHat Enterprise Linux WS 2.1
+
RedHat Linux 7.3
+
RedHat Linux 7.2
+
RedHat Linux 7.1
+
RedHat Linux for iSeries 7.1
+
RedHat Linux for pSeries 7.1
+
Slackware Linux 8.1
+
Sun Linux 5.0.7
+
Sun Solaris 9
+
Trustix Secure Linux 1.5
+
Trustix Secure Linux 1.2
+
Trustix Secure Linux 1.1
OpenSSH OpenSSH 3.1
OpenSSH OpenSSH 3.0.2 p1
+
Guardian Digital Engarde Secure Linux 1.0.1
+
HP VirtualVault 4.6
OpenSSH OpenSSH 3.0.2
-
Debian Linux 3.0
+
FreeBSD FreeBSD 4.5 -STABLEpre2002-03-07
+
FreeBSD FreeBSD 4.5 -RELEASE
+
OpenPKG OpenPKG 1.0
+
Openwall Openwall GNU/*/Linux 0.1 -stable
+
S.u.S.E. Linux 8.0
OpenSSH OpenSSH 3.0.1 p1
OpenSSH OpenSSH 3.0.1
OpenSSH OpenSSH 3.0 p1
OpenSSH OpenSSH 3.0
Avaya Integrated Management 2.1
Avaya Integrated Management
Avaya CVLAN
|
|
|
|
Not Vulnerable:
|
|
|
|
