Definition

sshd Log Bypass Vulnerability

oval:org.mitre.oval:def:3505

The Secure Shell (SSH) Daemon (SSHD) in Sun Solaris 9 does not properly log IP addresses when SSHD is configured with the ListenAddress as 0.0.0.0 which makes it easier for remote attackers to hide the source of their activities.

Family:

unix

Status:

ACCEPTED

Platform(s):

Sun Solaris 9

Class:

vulnerability

Reference(s):

CVE-2004-1357

Product(s):

sshd