Vulnerability Description
The Secure Shell (SSH) Daemon (SSHD) in Sun Solaris 9 does not properly log IP addresses when SSHD is configured with the ListenAddress as 0.0.0.0, which makes it easier for remote attackers to hide the source of their activities.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Sun | Solaris | 9.0 |
References
- http://secunia.com/advisories/11316/PatchVendor Advisory
- http://sunsolve.sun.com/search/document.do?assetkey=1-26-57538-1PatchVendor Advisory
- http://www.auscert.org.au/render.html?it=4003PatchVendor Advisory
- http://www.kb.cert.org/vuls/id/737548PatchThird Party AdvisoryUS Government Resource
- http://www.securityfocus.com/bid/10080Patch
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15784
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3
- http://secunia.com/advisories/11316/PatchVendor Advisory
- http://sunsolve.sun.com/search/document.do?assetkey=1-26-57538-1PatchVendor Advisory
- http://www.auscert.org.au/render.html?it=4003PatchVendor Advisory
- http://www.kb.cert.org/vuls/id/737548PatchThird Party AdvisoryUS Government Resource
- http://www.securityfocus.com/bid/10080Patch
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15784
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3
FAQ
What is CVE-2004-1357?
CVE-2004-1357 is a vulnerability with a CVSS score of 5.0 (MEDIUM). The Secure Shell (SSH) Daemon (SSHD) in Sun Solaris 9 does not properly log IP addresses when SSHD is configured with the ListenAddress as 0.0.0.0, which makes it easier for remote attackers to hide t...
How severe is CVE-2004-1357?
CVE-2004-1357 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2004-1357?
Check the references section above for vendor advisories and patch information. Affected products include: Sun Solaris.