Summary
The remote host is missing an update to ssh-krb5
announced via advisory DSA 383-1.
Solution
https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20383-1
Insight
Several bugs have been found in OpenSSH's buffer handling. It is not known if these bugs are exploitable, but as a precaution an upgrade is advised.
For the Debian stable distribution these bugs have been fixed in version 1:3.4p1-0woody3 .
Severity
Classification
-
CVE CVE-2003-0693, CVE-2003-0695 -
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C
Related Vulnerabilities