[Japanese]
|
JVNDB-2012-000095
|
Mac OS X OpenSSH vulnerable to denial-of-service (DoS)
|
The OpenSSH implementation in Mac OS X is vulnerable to denial-of-service.
The OpenSSH implementation in Mac OS X is vulnerable to denial-of-service.
MASAKI KATAYAMA of Appirits inc Cyber Security Laboratory reported this vulnerability to IPA.
JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.
[JPCERT/CC Addendum]
This JVN publication was delayed to 2012/10/31 after the developer fix was developed. From the fiscal year 2011, JPCERT/CC is using a new vendor coordination procedure. This new procedure came from the recommendation of the fiscal year 2010 "Study Group on Information System Vulnerability Handling" aimed at more timely JVN publications.
|
CVSS V2 Severity: Base Metrics 5.0 (Medium) [IPA Score]
- Access Vector: Network
- Access Complexity: Low
- Authentication: None
- Confidentiality Impact: None
- Integrity Impact: None
- Availability Impact: Partial
|
|
Apple Inc.
- Apple Mac OS X versions prior to 10.6
|
|
A remote attacker may cause a denial-of-service.
|
[Update the software]
Update to the latest version according to the information provided by the developer.
According to the developer, versions Mac OS X 10.6 and later are not affected by this vulnerability.
|
Apple Inc.
|
- No Mapping(CWE-noinfo) [IPA Evaluation]
|
|
- JVN : JVN#75345069
|
- [2012/10/31]
Web page was published
|