Lucene search
Redhat.comRH:CVE-2007-2243HistoryOct 30, 2015 - 10:11 a.m.
CVE-2007-2243
2015-10-3010:11:40
redhat.com
access.redhat.com
9
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
AI Score
7.4
Confidence
Low
EPSS
0.007
Percentile
80.7%
OpenSSH 4.6 and earlier, when ChallengeResponseAuthentication is enabled, allows remote attackers to determine the existence of user accounts by attempting to authenticate via S/KEY, which displays a different response if the user account exists, a similar issue to CVE-2001-1483.
Related
cvelist
cvelist
nvd
nvd
f5
f5
K14228 : OpenSSH vulnerability CVE-2007-2243
2014-12-11 00:00:00
SOL14228 - OpenSSH vulnerability CVE-2007-2243
2013-02-21 00:00:00
K14229 : OpenSSH vulnerability CVE-2007-2768
2013-09-10 00:00:00
debiancve
debiancve
CVE-2007-2243
2007-04-25 16:19:00
CVE-2007-2768
2007-05-21 20:30:00
prion
prion
Design/Logic Flaw
2007-04-25 16:19:00
Design/Logic Flaw
2007-05-21 20:30:00
ubuntucve
ubuntucve
CVE-2007-2243
2007-04-25 00:00:00
CVE-2007-2768
2007-05-21 00:00:00
cve
cve
nessus
nessus
OpenSSH S/KEY Authentication Account Enumeration
2011-11-18 00:00:00
CBL Mariner 2.0 Security Update: openssh (CVE-2007-2768)
2024-07-03 00:00:00
OpenSSH < 4.7 Trusted X11 Cookie Connection Policy Bypass
2011-10-04 00:00:00
packetstorm
packetstorm
OpenSSH s/key Weakness
2007-04-21 00:00:00
openvas
openvas
OpenSSH < 4.7 Improper Authentication Vulnerabilities
2021-05-27 00:00:00
redhatcve
redhatcve
CVE-2007-2768
2015-10-30 09:40:27
avleonov
avleonov
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
AI Score
7.4
Confidence
Low
EPSS
0.007
Percentile
80.7%
Related for RH:CVE-2007-2243