← back
CVE-2005-2798

CVE-2005-2798

EPSS 2.3%
sshd in OpenSSH before 4.2, when GSSAPIDelegateCredentials is enabled, allows GSSAPI credentials to be delegated to clients who log in using non-GSSAPI methods, which could cause those credentials to be exposed to untrusted users or hosts.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.53/SCOSA-2005.53.txthttp://lists.suse.com/archive/suse-security-announce/2006-Feb/0001.htmlhttp://secunia.com/advisories/16686http://secunia.com/advisories/17077http://secunia.com/advisories/17245http://secunia.com/advisories/18010http://secunia.com/advisories/18406http://secunia.com/advisories/18507http://secunia.com/advisories/18661http://secunia.com/advisories/18717http://securitytracker.com/id?1014845https://exchange.xforce.ibmcloud.com/vulnerabilities/24064