Lucene search

MitreCVE-2004-1357

HistoryJan 19, 2005 - 5:00 a.m.

CVE-2004-1357

2005-01-1905:00:00

mitre

web.nvd.nist.gov

sun solaris

sshd

listenaddress

log

vulnerability

cve-2004-1357

nvd

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

AI Score

Confidence

Low

EPSS

0.015

Percentile

86.8%

JSON

The Secure Shell (SSH) Daemon (SSHD) in Sun Solaris 9 does not properly log IP addresses when SSHD is configured with the ListenAddress as 0.0.0.0, which makes it easier for remote attackers to hide the source of their activities.

Affected configurations

Nvd

Node

sunsolarisMatch9.0sparc

sunsolarisMatch9.0x86

VendorProductVersionCPE
sunsolaris9.0cpe:2.3:o:sun:solaris:9.0:*:sparc:*:*:*:*:*
sunsolaris9.0cpe:2.3:o:sun:solaris:9.0:*:x86:*:*:*:*:*

Vendor	Product	Version	CPE
sun	solaris	9.0	cpe:2.3:o:sun:solaris:9.0::sparc:::::
sun	solaris	9.0	cpe:2.3:o:sun:solaris:9.0::x86:::::

References

secunia.com/advisories/11316/

sunsolve.sun.com/search/document.do?assetkey=1-26-57538-1

www.auscert.org.au/render.html?it=4003

www.kb.cert.org/vuls/id/737548

www.securityfocus.com/bid/10080

exchange.xforce.ibmcloud.com/vulnerabilities/15784

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3505

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

AI Score

Confidence

Low

EPSS

0.015

Percentile

86.8%

JSON

Related for CVE-2004-1357