On Wed, 23 Oct 2002, Adam Mazza wrote: > After performing a nessus scan on a site, I was alerted to the the version > of ssh running on one of th hosts, in this case the version is > "SSH-1.5-1.2.27". The only alert that came up was for a reference to > CVE-2000-0575 which describes a problem if you have ssh compiled with > kerberos support. My question is, this version of ssh has other, and in my > opinion more serious vulnerabilities, should thos have been caught as > well?
Umm...something is wrong. Nessus should have reported a bunch of other problems, including CVE-2001-0144, the infamous attack against CRC compensation attack detector. A few weeks ago, I found a version returning this exact greeting, and Nessus reported it. And indeed, it was vulnerable and exploitable, so I owned it and the customer got another bomb icon in the report. ;) --Pavel Kankovsky aka Peak "Welcome to the Czech Republic. Bring your own lifeboats." - [EMAIL PROTECTED]: general discussions about Nessus. * To unsubscribe, send a mail to [EMAIL PROTECTED] with "unsubscribe nessus" in the body.
