Helsinki, Finland -
September 6, 2005
SSH Tectia Not Affected by the New Vulnerabilities Found from Secure Shell Products
SSH Communications Security >> http://www.ssh.com
======================================================
[SSH Tectia Not Affected by the New Vulnerabilities Found from Secure Shell Products]
< September 6, 2005 >
======================================================
Source: http://secunia.com/advisories/16686/
Three security issues have been reported in WRQ Reflection for Secure IT Windows Server, which can be exploited by local users to disclose certain sensitive information, or by malicious users to bypass certain security restrictions.
Source: http://secunia.com/advisories/16649/
http://www.kb.cert.org/vuls/id/758054
SSH Communications Security reported and announced a fix in June 30, 2005 to the "insecure file permissions" issue now also found in the WRQ Reflection for Secure IT Windows Server product:
http://www.ssh.com/company/newsroom/article/653/
SSH Tectia products ARE NOT AFFECTED by the other two security issues found in the WRQ Reflection for Secure IT Windows Server product (VU#902110 and VU#758054).
======================================================
# SSH Security Alert Mailing List #
----------------------------------------------------
This e-mail has been sent to the users of SSH products and others who have been in contact with us in the past and who have agreed that we send you security alerts.
To unsubscribe from the mailing list, send a blank e-mail to ssh-news-alert-unsubscribe@lists.ssh.com from the e-mail account you wish to unsubscribe, or visit
http://www.ssh.com/company/newsroom/unsubscribe.mpl .
======================================================
Sincerely,
SSH Communications Security >> http://www.ssh.com
======================================================
[SSH Tectia Not Affected by the New Vulnerabilities Found from Secure Shell Products]
< September 6, 2005 >
======================================================
DESCRIPTION
Several new vulnerabilities have been discovered and reported on September 2, 2005 in 3rd-party Secure Shell -based products. Two new security issues in OpenSSH can be exploited by malicious users to gain escalated privileges or bypass certain security restrictions.Source: http://secunia.com/advisories/16686/
Three security issues have been reported in WRQ Reflection for Secure IT Windows Server, which can be exploited by local users to disclose certain sensitive information, or by malicious users to bypass certain security restrictions.
Source: http://secunia.com/advisories/16649/
US-CERT
http://www.kb.cert.org/vuls/id/902110http://www.kb.cert.org/vuls/id/758054
AFFECTED PRODUCTS
SSH Tectia products ARE NOT AFFECTED by the new security vulnerabilites found in the OpenSSH code.SSH Communications Security reported and announced a fix in June 30, 2005 to the "insecure file permissions" issue now also found in the WRQ Reflection for Secure IT Windows Server product:
http://www.ssh.com/company/newsroom/article/653/
SSH Tectia products ARE NOT AFFECTED by the other two security issues found in the WRQ Reflection for Secure IT Windows Server product (VU#902110 and VU#758054).
======================================================
# SSH Security Alert Mailing List #
----------------------------------------------------
This e-mail has been sent to the users of SSH products and others who have been in contact with us in the past and who have agreed that we send you security alerts.
To unsubscribe from the mailing list, send a blank e-mail to ssh-news-alert-unsubscribe@lists.ssh.com from the e-mail account you wish to unsubscribe, or visit
http://www.ssh.com/company/newsroom/unsubscribe.mpl .
======================================================
Sincerely,
SSH Communications Security >> http://www.ssh.com
SSH Corp. Contact
George Adams
SSH Communications Security Corp.
Tel: +1 781 247 2100
E-mail: 
Americas Contact
Byron Rashed
SSH Communications Security, Inc.
Tel: +1 650 251 2721
E-mail: 
Europe Contact
Bo Sorensen
SSH Communications Security Corp.
Tel: +358 20 500 7404
E-mail: 
Investor Relations
Mika Peuranen
SSH Communications Security Corp.
Tel: +358 20 500 7419
E-mail: 
U.S. Agency Contact
Cheryl Seaberg
Walt & Company
Tel: +1 408 496 0900 x 2981
E-mail: 
© 2005 SSH Communications Security Corp. All rights reserved. ssh® is a registered trademark of SSH Communications Security Corp in the United States and in certain other jurisdictions. All other names and marks are property of their respective owners.