SSH Communications Security SSH Tectia Server 6.0.8
Approved changes feed: RSS · Atom
cpe:2.3:a:ssh:tectia_server:6.0.8:*:*:*:*:*:*:*
part: a version: 6.0.8 update: *
| Vendor | Ssh (244e7ab1-7432-5147-94cd-c233f4ecfdee) |
|---|---|
| Product | Tectia Server (08fa7a09-e0da-5da5-baf1-1bb3e5bd9c01) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2012-5975 |
vulnerable | 2026-06-08 05:02:58.872749 |
Details available
The SSH USERAUTH CHANGE REQUEST feature in SSH Tectia Server 6.0.4 through 6.0.20, 6.1.0 through 6.1.12, 6.2.0 through 6.2.5, and 6.3.0 through 6.3.2 on UNIX and Linux, when old-style password authentication is enabled, allows remote attackers to bypass authentication via a crafted session involving entry of blank passwords, as demonstrated by a root login session from a modified OpenSSH client with an added input_userauth_passwd_changereq call in sshconnect2.c.
Published: 2012-12-04T23:00:00.000Z
Updated: 2024-09-17T02:37:22.733Z Reference links |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.