VULHUB ™

It has been reported that SSH Tectia Server may be prone to a private key disclosure vulnerability due to an unspecified weakness in the password change mechanism functionality employed by the server. Because of this, a local attacker may be able to gain access to the private host key of a vulnerable system. It has been reported that the password change mechanism is not enabled by default. SSH Tectia Server for Unix versions 4.0.3 and 4.0.4 are affected by this issue. Tectia Server for Windows is not vulnerable to this issue.

It has been reported that SSH Tectia Server may be prone to a private key disclosure vulnerability due to an unspecified weakness in the password change mechanism functionality employed by the server. Because of this, a local attacker may be able to gain access to the private host key of a vulnerable system. It has been reported that the password change mechanism is not enabled by default. SSH Tectia Server for Unix versions 4.0.3 and 4.0.4 are affected by this issue. Tectia Server for Windows is not vulnerable to this issue.