SSH Vulberabilty openssh version how to check-Bit Urgent PLZ!!
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
10-08-2015 02:49 AM
Hi Folks/Cisco members
I need to know if below CVE-ID are affected on Cisco ACE.I did research but could not found the exact details and found below links only.
I need to know how to check open ssh version in the IOS .on cisco ASA i know it can be found in release-open source license but on ace i could not find that .Appreciate your support please
This was done by the auditors and need to submit the reports now
Ace image and model are below
Image IOS:disk0:c6ace-t1k9-mz.A2_3_4.bin
model-ACE-20-MOD-K9
========================
CVE details:
CVE-2015-5600 (http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5600)
CVE-2015-6564 (http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-6564)
CVE-2015-6565 (http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-6565)
====================================
Finding as of now done:
CVE 2015-5600
http://tools.cisco.com/security/center/viewAlert.x?alertId=40178
https://www.scalar.ca/en/2015/07/openssh-server-open-to-password-brute-force-attack/
==============================
CVE-2015-6564
http://tools.cisco.com/security/center/viewAlert.x?alertId=41122
- Labels:
-
Application Networking
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
10-11-2015 12:46 AM
Hello ,
Appreciate if anybody can response to the above post.
