CVE-2005-2146

Name of the Vulnerable Software and Affected Versions: SSH Tectia Server versions 4.3.1 and earlier SSH Secure Shell for Windows Servers (affected versions not specified)

Description: The issue allows local users to access the Secure Shell host identification key due to insecure permissions when the key is generated. This could enable users to spoof the server.

Recommendations: For SSH Tectia Server versions 4.3.1 and earlier, update to a version later than 4.3.1 to resolve the issue. For SSH Secure Shell for Windows Servers, at the moment, there is no information about a newer version that contains a fix for this vulnerability.