FreeBSD SSH Port Extra Network Port Listening Vulnerability
BID:1323
Info
FreeBSD SSH Port Extra Network Port Listening Vulnerability
| Bugtraq ID: | 1323 |
| Class: | Configuration Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Jun 07 2000 12:00AM |
| Updated: | Jun 07 2000 12:00AM |
| Credit: | This vulnerability was disclosed in a FreeBSD security advisory on June 7, 2000. |
| Vulnerable: |
FreeBSD FreeBSD 4.0 |
| Not Vulnerable: | |
Discussion
FreeBSD SSH Port Extra Network Port Listening Vulnerability
A vulnerability exists in the FreeBSD 'ports' version of SSH. A patch was added to allow sshd to listen on multiple ports. At the same time, the configuration file was inadvertently altered to make sshd listen on both port 22, which is normal, and port 722. This could affect users who are firewalling off services, and do not realize sshd is running on port 722.
This does not represent a vulnerability in sshd. It is a misconfiguration only. In addition, this vulnerability is unlikely to have any real impact in normal scenarios, as the sshd listening to port 722 behaves as normal; authentication is still required.
A vulnerability exists in the FreeBSD 'ports' version of SSH. A patch was added to allow sshd to listen on multiple ports. At the same time, the configuration file was inadvertently altered to make sshd listen on both port 22, which is normal, and port 722. This could affect users who are firewalling off services, and do not realize sshd is running on port 722.
This does not represent a vulnerability in sshd. It is a misconfiguration only. In addition, this vulnerability is unlikely to have any real impact in normal scenarios, as the sshd listening to port 722 behaves as normal; authentication is still required.
Exploit / POC
FreeBSD SSH Port Extra Network Port Listening Vulnerability
sshd will be listening on port 722 in addition to port 22. If port 22 is firewalled off, the sshd listening on port 722 may still be available.
sshd will be listening on port 722 in addition to port 22. If port 22 is firewalled off, the sshd listening on port 722 may still be available.
References
FreeBSD SSH Port Extra Network Port Listening Vulnerability
References:
References: