SSH 1.2.27 with Kerberos authentication support stores Kerberos tickets in a file which is created in the current directory of the user who is logging in, which could allow remote attackers to sniff the ticket cache if the home directory is installed on NFS.
References
Link | Resource |
---|---|
http://marc.info/?l=bugtraq&m=96256265914116&w=2 | |
http://www.securityfocus.com/bid/1426 | Patch Vendor Advisory |
https://exchange.xforce.ibmcloud.com/vulnerabilities/4903 |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2002-03-09T05:00:00
Updated: 2002-02-26T10:00:00
Reserved: 2000-07-19T00:00:00
Link: CVE-2000-0575
JSON object: View
NVD Information
Status : Modified
Published: 2000-07-05T04:00:00.000
Modified: 2017-10-10T01:29:12.077
Link: CVE-2000-0575
JSON object: View
Redhat Information
No data.
CWE