CVE-2007-0726

Name of the Vulnerable Software and Affected Versions OpenSSH in Apple Mac OS X versions 10.3.9 and 10.4 through 10.4.8

Description The issue allows remote attackers to cause a denial of service by connecting to the server before SSH has finished creating keys. This can cause the keys to be regenerated, potentially breaking trust relationships that were based on the original keys.

Recommendations For OpenSSH in Apple Mac OS X versions 10.3.9 and 10.4 through 10.4.8, consider restricting access to the SSH server until the key generation process is complete to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.