oval:org.mitre.oval:def:19595

Definition Id: oval:org.mitre.oval:def:19595

Oval ID:	oval:org.mitre.oval:def:19595
Title:	HP-UX Running HP Secure Shell, Remote Denial of Service (DoS)
Description:	The default configuration of OpenSSH through 6.1 enforces a fixed time limit between establishing a TCP connection and completing a login, which makes it easier for remote attackers to cause a denial of service (connection-slot exhaustion) by periodically making many new TCP connections.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2010-5107	Version:	12
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
Criteria meets HP Security Bulletin HPSBUX02886 HP Release B.11.11 AND Secure_Shell.SECURE_SHELL version is less than A.06.20.001 OR Criteria meets HP Security Bulletin HPSBUX02886 HP Release B.11.23 AND filesets tests Secure_Shell.SECSH-CMN version is less than A.06.20.002 AND Secure_Shell.SECURE_SHELL version is less than A.06.20.002 OR Criteria meets HP Security Bulletin HPSBUX02886 HP-UX B.11.31 AND filesets tests Secure_Shell.SECSH-CMN version is less than A.06.20.003 AND Secure_Shell.SECURE_SHELL version is less than A.06.20.003