ssh vulnerebility

Joe Crawford abjcrawford at yahoo.com
Tue Oct 3 16:34:18 EDT 2006


Team:

Please correct the below mentioned vulnerebility and
take corrective action

OpenSSH GSSAPI Credential Disclosure Vulnerability

  65.176.45.23  (-, -)  port 22/tcp Solaris 2.6-8
CVSS:  -  New 

SOLUTION:
This issue affects versions of OpenSSH prior to 4.2.
The vendor released OpenSSH version 4.2 to address
this issue.

This is what is the recommendation is. What would it
take to upgrade to 4.2? Also, would it require a
reboot? Any gotchas? Pl advise

Thanks

Joe.
Tired of spam?  Yahoo! Mail has the best spam protection around 
http://mail.yahoo.com 



More information about the sunmanagers mailing list