ssh vulnerebility

Joe Crawford abjcrawford at
Tue Oct 3 16:34:18 EDT 2006


Please correct the below mentioned vulnerebility and
take corrective action

OpenSSH GSSAPI Credential Disclosure Vulnerability  (-, -)  port 22/tcp Solaris 2.6-8
CVSS:  -  New 

This issue affects versions of OpenSSH prior to 4.2.
The vendor released OpenSSH version 4.2 to address
this issue.

This is what is the recommendation is. What would it
take to upgrade to 4.2? Also, would it require a
reboot? Any gotchas? Pl advise


Tired of spam?  Yahoo! Mail has the best spam protection around 

More information about the sunmanagers mailing list