Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-2771

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2005-2771
Last Modified 05 Sep 2008 04:52:39
Published 02 Sep 2005 07:03:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-2771

Summary

WRQ Reflection for Secure IT Windows Server 6.0 (formerly known as F-Secure SSH server) processes access and deny lists in a case-sensitive manner, when previous versions were case-insensitive, which might allow remote attackers to bypass intended restrictions and login to accounts that should be denied.

Vulnerable Systems

Application

  • F-secure Ssh Server 5.1

  • F-secure Ssh Server 5.2

  • F-secure Ssh Server 5.3

  • Wrq Reflection For Secure It Windows Server 6.0


References

CERT-VN - VU#758054

SECUNIA - 16649

CONFIRM - http://support.wrq.com/techdocs/1910.html

SECTRACK - 1014835


Last Updated: 27 May 2016 10:40:38