News

Description

A vulnerability has been detected which affects SSH Tectia Server (Unix) 4.0.3 and 4.0.4 code. SSH Tectia Server (Unix) 4.0.3 and 4.0.4 have a password change mechanism, which executes the "passwd" program during user authentication to change the user's password in case of password expiration. There is a potential exploit which could enable a user to gain access to the system's private host key. Please note that the password change plugin functionality is not enabled by default.

CERT Coordination Center's advisory (www.cert.org) is at http://www.kb.cert.org/vuls/id/814198.

Affected Products

You are vulnerable if:

• You are using SSH Tectia Server (Unix) version 4.0.3 or 4.0.4 AND you have enabled the password change plugin functionality AND users have a shell access
  

Your server is not vulnerable if:

• You are using any version of SSH Tectia Server (Windows) or the older SSH Secure Shell Servers for Windows
  
• You are using SSH Tectia Server (Unix) version 4.0.3 or 4.0.4 and have not enabled the password change plugin functionality (which is by default not enabled) or users do not have a shell access
  
• You are using any other version of SSH Tectia Server (Unix) or the older SSH Secure Shell Servers for Unix
  

Action

We strongly advise you to upgrade to 4.0.5 if your SSH Tectia Server (Unix) installation version is 4.0.3 or 4.0.4.

If you have SSH Tectia Server (Unix) 4.0.3 or 4.0.4 and password change mechanism has been enabled and users have had shell access, SSH recommends host key regeneration after the 4.0.5 fix has been applied.

Customers may download the SSH Tectia Server (Unix) 4.0.5 update from the Updates and Packages at Download Section. A valid license file (for version 4.0.3 or 4.0.4) is required for all the binaries.
http://www.ssh.com/support/downloads/tectia-server-unix/

If you do not have a valid license file and wish to obtain it, please visit our online store or contact your sales representative.
http://www.ssh.com/company/sales/

SSH Communications Security is committed to utmost security

SSH Communications Security apologizes for any inconvenience caused. We take security of the systems of our customers very seriously and do our utmost to provide secure software. We strongly urge all customers to consider the implications of this vulnerability and to make an educated decision on whether or not to update.

© 2004 SSH Communications Security Corp. All rights reserved. ssh® is a registered trademark of SSH Communications Security Corp in the United States and in certain other jurisdictions. All other names and marks are property of their respective owners.