OVAL Repository - View Definition: oval:org.mitre.oval:def:11124

OVAL Repository > View Definition

View Definition

NEW SEARCH : BACK

Definition Id: oval:org.mitre.oval:def:11124		Version: 3 Last Modified: 2010-07-09
Title:	Unspecified vulnerability in the linux_audit_record_event function in OpenSSH 4.3p2, as used on Fedora Core 6 and possibly other systems, allows remote attackers to write arbitrary characters to an audit log via a crafted username. NOTE: some of these details are obtained from third party information.
Description:	Unspecified vulnerability in the linux_audit_record_event function in OpenSSH 4.3p2, as used on Fedora Core 6 and possibly other systems, allows remote attackers to write arbitrary characters to an audit log via a crafted username. NOTE: some of these details are obtained from third party information.
Family:	unix	Class:	vulnerability
Status:	ACCEPTED	Reference(s):	CVE-2007-3102
Platform(s):	Red Hat Enterprise Linux 4 Red Hat Enterprise Linux 5	Product(s):
Definition Synopsis:
The operating system installed on the system is Red Hat Enterprise Linux 4 AND openssh is earlier than 0:3.9p1-8.RHEL4.24 OR pam-devel is earlier than 0:0.77-66.23 OR pam is earlier than 0:0.77-66.23 OR openssh-askpass is earlier than 0:3.9p1-8.RHEL4.24 OR openssh-server is earlier than 0:3.9p1-8.RHEL4.24 OR openssh-clients is earlier than 0:3.9p1-8.RHEL4.24 OR openssh-askpass-gnome is earlier than 0:3.9p1-8.RHEL4.24 OR The operating system installed on the system is Red Hat Enterprise Linux 5 AND openssh is earlier than 0:4.3p2-24.el5 OR pam-devel is earlier than 0:0.99.6.2-3.26.el5 OR pam is earlier than 0:0.99.6.2-3.26.el5 OR openssh-askpass is earlier than 0:4.3p2-24.el5 OR openssh-server is earlier than 0:4.3p2-24.el5 OR openssh-clients is earlier than 0:4.3p2-24.el5

NEW SEARCH : BACK

OVAL Repository

About the Repository

OVAL Repository Forum

Author’s Resources

Items of Interest