SSH 1.2.27 with Kerberos authentication support stores Kerberos tickets in a file which is created in the current directory of the user who is logging in, which could allow remote attackers to sniff the ticket cache if the home directory is installed on NFS.
References
Link | Resource |
---|---|
http://marc.info/?l=bugtraq&m=96256265914116&w=2 | |
http://www.securityfocus.com/bid/1426 | Patch Vendor Advisory |
https://exchange.xforce.ibmcloud.com/vulnerabilities/4903 |
Configurations
History
No history.
Information
Published : 2000-07-05 04:00
Updated : 2024-02-28 10:24
NVD link : CVE-2000-0575
Mitre link : CVE-2000-0575
CVE.ORG link : CVE-2000-0575
JSON object : View
Products Affected
ssh
- ssh
CWE