PT-1999-1527 · Openssh+1 · Openssh+1

Published

1999-12-14

·

Updated

2024-07-08

·

CVE-1999-1010

CVSS v2.0

2.1

Low

VectorAV:L/AC:L/Au:N/C:P/I:N/A:N
Name of the Vulnerable Software and Affected Versions OpenSSH version 1.2.27
Description The issue allows a client to use the "none" cipher, even if it is not allowed by the server policy, in an SSH server.
Recommendations For OpenSSH version 1.2.27, update the server configuration to explicitly disallow the use of the "none" cipher.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Related Identifiers

ALT-PU-2024-3921
ALT-PU-2024-4077
ALT-PU-2024-4467
ALT-PU-2024-9513
CVE-1999-1010

Affected Products

Alt Linux
Openssh