Sun Solaris Secure Shell Daemon Client Logging Weakness
BID:10080
Info
Sun Solaris Secure Shell Daemon Client Logging Weakness
| Bugtraq ID: | 10080 |
| Class: | Configuration Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Apr 07 2004 12:00AM |
| Updated: | Apr 07 2004 12:00AM |
| Credit: | This issue was announced by Sun. |
| Vulnerable: |
Sun Solaris 9_x86 Sun Solaris 9 |
| Not Vulnerable: | |
Discussion
Sun Solaris Secure Shell Daemon Client Logging Weakness
It has been reported that Sun Secure Shell Daemon may log erroneous client IP addresses under some circumstances. As a result, SSHD logging facilities may not accurately record client connections. It has been reported that when the condition occurs, the client address will be logged as "0.0.0.0".
It has been reported that Sun Secure Shell Daemon may log erroneous client IP addresses under some circumstances. As a result, SSHD logging facilities may not accurately record client connections. It has been reported that when the condition occurs, the client address will be logged as "0.0.0.0".
Exploit / POC
Sun Solaris Secure Shell Daemon Client Logging Weakness
There is no exploit required.
There is no exploit required.
Solution / Fix
Sun Solaris Secure Shell Daemon Client Logging Weakness
Solution:
Sun has released patches to address this issue.
Sun Solaris 9_x86
Sun Solaris 9
Solution:
Sun has released patches to address this issue.
Sun Solaris 9_x86
Sun Solaris 9