Vulnerability Description
WRQ Reflection for Secure IT Windows Server 6.0 (formerly known as F-Secure SSH server) does not properly handle when the Windows Administrator or Guest accounts are renamed after SSH key authentication has been configured, which allows remote attackers to use the original names during login.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Wrq | Wrq Reflection For Secure It Windows Server | 6.0 |
References
- http://secunia.com/advisories/16649/Patch
- http://securitytracker.com/id?1014835
- http://support.wrq.com/techdocs/1910.html
- http://www.kb.cert.org/vuls/id/902110Third Party AdvisoryUS Government Resource
- http://secunia.com/advisories/16649/Patch
- http://securitytracker.com/id?1014835
- http://support.wrq.com/techdocs/1910.html
- http://www.kb.cert.org/vuls/id/902110Third Party AdvisoryUS Government Resource
FAQ
What is CVE-2005-2770?
CVE-2005-2770 is a vulnerability with a CVSS score of 7.5 (HIGH). WRQ Reflection for Secure IT Windows Server 6.0 (formerly known as F-Secure SSH server) does not properly handle when the Windows Administrator or Guest accounts are renamed after SSH key authenticati...
How severe is CVE-2005-2770?
CVE-2005-2770 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2005-2770?
Check the references section above for vendor advisories and patch information. Affected products include: Wrq Wrq Reflection For Secure It Windows Server.