OpenSSH-portable PAM Authentication Remote Information Disclosure Vulnerability

Bugtraq ID: 11781
Class: Design Error
CVE: CVE-2003-0190
Remote: Yes
Local: No
Published: Nov 30 2004 12:00AM
Updated: May 08 2007 11:09PM
Credit: The original discovery of this vulnerability is credited to 'Marco Ivaldi <raptor@mediaservice.net>'.
Vulnerable: SuSE Linux Enterprise Server 9
S.u.S.E. Linux Personal 9.2 x86_64
S.u.S.E. Linux Personal 9.2
S.u.S.E. Linux Personal 9.0 x86_64
S.u.S.E. Linux Personal 9.0
OpenSSH OpenSSH 3.9 p1
+ S.u.S.E. Linux Personal 9.2 x86_64
 + S.u.S.E. Linux Personal 9.2
OpenSSH OpenSSH 3.8.1 p1
+ Ubuntu Ubuntu Linux 4.1 ppc
 + Ubuntu Ubuntu Linux 4.1 ia64
 + Ubuntu Ubuntu Linux 4.1 ia32
 OpenSSH OpenSSH 3.8 p1
+ S.u.S.E. Linux Personal 9.1 x86_64
 + S.u.S.E. Linux Personal 9.1
OpenSSH OpenSSH 3.7.1 p1
+ SCO Open Server 5.0.7
OpenSSH OpenSSH 3.7.1
OpenSSH OpenSSH 3.7 p1
OpenSSH OpenSSH 3.7 .1p2
OpenSSH OpenSSH 3.7
OpenSSH OpenSSH 3.6.1 p2
+ MandrakeSoft Corporate Server 2.1 x86_64
 + MandrakeSoft Corporate Server 2.1
+ MandrakeSoft Multi Network Firewall 2.0
+ Mandriva Linux Mandrake 9.1 ppc
 + Mandriva Linux Mandrake 9.1
+ Mandriva Linux Mandrake 9.0
+ Mandriva Linux Mandrake 8.2 ppc
 + Mandriva Linux Mandrake 8.2
+ Trustix Secure Linux 2.0
OpenSSH OpenSSH 3.6.1 p1
+ OpenPKG OpenPKG Current
 + Slackware Linux 9.0
+ Slackware Linux -current
 OpenSSH OpenSSH 3.6.1
+ Novell Netware 6.5
OpenSSH OpenSSH 3.5 p1
+ OpenPKG OpenPKG 1.2
+ Redhat Linux 9.0 i386
 + S.u.S.E. Linux Personal 8.2
+ Terra Soft Solutions Yellow Dog Linux 3.0
OpenSSH OpenSSH 3.5
OpenSSH OpenSSH 3.4 p1-1
OpenSSH OpenSSH 3.4 p1
+ Conectiva Linux Enterprise Edition 1.0
+ Debian Linux 3.0 sparc
 + Debian Linux 3.0 s/390
 + Debian Linux 3.0 ppc
 + Debian Linux 3.0 mipsel
 + Debian Linux 3.0 mips
 + Debian Linux 3.0 m68k
 + Debian Linux 3.0 ia-64
 + Debian Linux 3.0 ia-32
 + Debian Linux 3.0 hppa
 + Debian Linux 3.0 arm
 + Debian Linux 3.0 alpha
 + FreeBSD FreeBSD 5.0
+ FreeBSD FreeBSD 4.7 -RELEASE
 + FreeBSD FreeBSD 4.7
+ IBM AIX 5.1 L
 + IBM AIX 4.3.3
+ Immunix Immunix OS 7+
 + Redhat Linux 8.0
+ Slackware Linux 8.1
+ SuSE Linux 8.1
+ SuSE Linux 8.0
OpenSSH OpenSSH 3.4
OpenSSH OpenSSH 3.3 p1
OpenSSH OpenSSH 3.3
+ Openwall Openwall GNU/*/Linux (Owl)-current
 OpenSSH OpenSSH 3.2.3 p1
OpenSSH OpenSSH 3.2.2 p1
+ Apple Mac OS X 10.1.5
+ Apple Mac OS X 10.1.4
+ Apple Mac OS X 10.1.3
+ Apple Mac OS X 10.1.2
+ Apple Mac OS X 10.1.1
+ Apple Mac OS X 10.1
+ Apple Mac OS X 10.1
+ Apple Mac OS X 10.0.4
+ Apple Mac OS X 10.0.3
+ Apple Mac OS X 10.0.2
+ Apple Mac OS X 10.0.1
+ Apple Mac OS X 10.0
OpenSSH OpenSSH 3.2
+ OpenBSD OpenBSD 3.1
 OpenSSH OpenSSH 3.1 p1
+ Juniper NetScreen-IDP 10 3.0 r2
 + Juniper NetScreen-IDP 10 3.0 r1
 + Juniper NetScreen-IDP 10 3.0
+ Juniper NetScreen-IDP 100 3.0 r2
 + Juniper NetScreen-IDP 100 3.0 r1
 + Juniper NetScreen-IDP 100 3.0
+ Juniper NetScreen-IDP 1000 3.0 r2
 + Juniper NetScreen-IDP 1000 3.0 r1
 + Juniper NetScreen-IDP 1000 3.0
+ Juniper NetScreen-IDP 500 3.0 r2
 + Juniper NetScreen-IDP 500 3.0 r1
 + Juniper NetScreen-IDP 500 3.0
+ Redhat Enterprise Linux AS 2.1 IA64
 + Redhat Enterprise Linux AS 2.1
 + Redhat Enterprise Linux ES 2.1 IA64
 + Redhat Enterprise Linux ES 2.1
 + Redhat Enterprise Linux WS 2.1 IA64
 + Redhat Enterprise Linux WS 2.1
 + Redhat Linux 7.3
+ Redhat Linux 7.2
+ Redhat Linux 7.1
+ Redhat Linux for iSeries 7.1
+ Redhat Linux for pSeries 7.1
+ Slackware Linux 8.1
+ Sun Linux 5.0.7
+ Sun Solaris 9
 + Trustix Secure Linux 1.5
+ Trustix Secure Linux 1.2
+ Trustix Secure Linux 1.1
OpenSSH OpenSSH 3.1
OpenSSH OpenSSH 3.0.2 p1
+ Guardian Digital Engarde Secure Linux 1.0.1
+ HP VirtualVault 4.6
OpenSSH OpenSSH 3.0.2
- Debian Linux 3.0
+ FreeBSD FreeBSD 4.5 -STABLEpre2002-03-07
 + FreeBSD FreeBSD 4.5 -RELEASE
 + OpenPKG OpenPKG 1.0
+ Openwall Openwall GNU/*/Linux 0.1 -stable
 + SuSE Linux 8.0
OpenSSH OpenSSH 3.0.1 p1
OpenSSH OpenSSH 3.0.1
OpenSSH OpenSSH 3.0 p1
OpenSSH OpenSSH 3.0
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus