Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The SSH protocols 1 and 2 (aka SSH-2) as implemented in OpenSSH and other packages have various weaknesses which can allow a remote attacker to obtain the following information via sniffing: (1) password lengths or ranges of lengths, which simplifies brute force password guessing, (2) whether RSA or DSA authentication is being used, (3) the number of authorized_keys in RSA authentication, or (4) the lengths of shell commands.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
OpenSSH SSH协议1和2漏洞
Vulnerability Description
OpenSSH和其他包上生效的SSH协议1和2(也称为SSH-2)具有许多缺陷。远程攻击者可以借助嗅探:(1)密码长度或长度范围简化蛮力密码猜测,(2)RSA或DSA认证是否被使用,(3)RSA认证的authorized_keys数目或(4)shell命令的长度获得下列信息。
CVSS Information
N/A
Vulnerability Type
N/A