oval:org.mitre.oval:def:28386

Definition Id: oval:org.mitre.oval:def:28386

Oval ID:	oval:org.mitre.oval:def:28386
Title:	HP-UX running HP Secure Shell, Remote Denial of Service (DoS) and other Vulnerabilities
Description:	sshd in OpenSSH before 6.6 does not properly support wildcards on AcceptEnv lines in sshd_config, which allows remote attackers to bypass intended environment restrictions by using a substring located before a wildcard character.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2014-2532	Version:	8
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
Criteria meets HP Security Bulletin HPSBUX03188 HP-UX B.11.11 AND filesets tests Secure_Shell.SECURE_SHELL version is less than A.06.20.010 OR Criteria meets HP Security Bulletin HPSBUX03188 HP-UX B.11.23 AND filesets tests Secure_Shell.SECURE_SHELL version is less than A.06.20.011 AND Secure_Shell.SECSH-CMN version is less than A.06.20.011 OR Criteria meets HP Security Bulletin HPSBUX03188 HP-UX B.11.31 AND filesets tests Secure_Shell.SECURE_SHELL version is less than A.06.20.012 AND Secure_Shell.SECSH-CMN version is less than A.06.20.012