New Search

sshd Log Bypass Vulnerability

oval:org.mitre.oval:def:3505

The Secure Shell (SSH) Daemon (SSHD) in Sun Solaris 9 does not properly log IP addresses when SSHD is configured with the ListenAddress as 0.0.0.0 which makes it easier for remote attackers to hide the source of their activities.

Family:
unix
Status:
ACCEPTED
Platform(s):
  • Sun Solaris 9
Class:
vulnerability
Reference(s):
  • CVE-2004-1357
Product(s):
  • sshd