Re: Some ssh issue scanning vulnerability

Leftz · ‎12-07-2022

Hello, we scan a switch with Qualys for vulnerability and found some issue as below. Anyone can tell what it does mean and provide some suggestion to fix it? Thank you

"OpenSSH is a set of computer programs providing encrypted communication sessions over a computer network using the SSH protocol.

The following security vulnerabilities have been identified in OpenSSH:

- A signal handler race condition in OpenSSH before Version 4.4 can be exploited to cause a crash, and possibly execute arbitrary code if GSSAPI authentication is enabled, via unspecified vectors that lead to a double-free. (CVE-2006-5051)

- A denial of service vulnerability exists in sshd in OpenSSH before Version 4.4, when using the SSH protocol Version 1, because it does not properly handle duplicate incoming blocks. This can be exploited by a remote attacker to cause sshd to consume a large quantity of CPU resources. (CVE-2006-4924)" If this vulnerability is successfully exploited, it can crash the OpenSSH server and potentially allow execution of arbitrary code. "Upgrade to OpenSSH 4.4 or later, available from the OpenSSH Web site http://www.openssh.org/ (http://www.openssh.org/).

marce1000 · ‎12-07-2022

- What is the switch model ?

M.

-- Each morning when I wake up and look into the mirror I always say ' Why am I so brilliant ? '
When the mirror will then always repond to me with ' The only thing that exceeds your brilliance is your beauty! '

Rob Ingram · ‎12-07-2022

@Leftz "- A denial of service vulnerability exists in sshd in OpenSSH before Version 4.4, when using the SSH protocol Version 1" - this seems to me that the issue is resolved if using SSH version 2. Try and configure "ip ssh version 2" and re-run the scan.