Lucene search

PRIOn knowledge basePRION:CVE-2007-3102

HistoryOct 18, 2007 - 8:17 p.m.

Design/Logic Flaw

2007-10-1820:17:00

PRIOn knowledge base

www.prio-n.com

6.6 Medium

AI Score

Confidence

Low

0.009 Low

EPSS

Percentile

83.0%

JSON

Unspecified vulnerability in the linux_audit_record_event function in OpenSSH 4.3p2, as used on Fedora Core 6 and possibly other systems, allows remote attackers to write arbitrary characters to an audit log via a crafted username. NOTE: some of these details are obtained from third party information.

CPENameOperatorVersion
openssheq4.3.0-p2

CPE	Name	Operator	Version
	openssh	eq	4.3.0-p2

References

osvdb.org/39214

secunia.com/advisories/27235

secunia.com/advisories/27588

secunia.com/advisories/27590

secunia.com/advisories/28319

secunia.com/advisories/28320

support.avaya.com/elmodocs2/security/ASA-2007-526.htm

support.avaya.com/elmodocs2/security/ASA-2007-527.htm

www.redhat.com/support/errata/RHSA-2007-0540.html

www.redhat.com/support/errata/RHSA-2007-0555.html

www.redhat.com/support/errata/RHSA-2007-0703.html

www.redhat.com/support/errata/RHSA-2007-0737.html

www.securityfocus.com/bid/26097

bugzilla.redhat.com/show_bug.cgi?id=248059

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11124

www.redhat.com/archives/fedora-package-announce/2007-October/msg00214.html