VULHUB ™

The F-Secure SSH server is vulnerable to a password authentication policy evasion vulnerability. This issue is due to a design error that potentially allows a user to use password authentication when the SSH server is configured to deny it. This issue may give rise to weak password issues, as administrators that believe that password authentication is disallowed may not be enforcing strong password policies.

The F-Secure SSH server is vulnerable to a password authentication policy evasion vulnerability. This issue is due to a design error that potentially allows a user to use password authentication when the SSH server is configured to deny it. This issue may give rise to weak password issues, as administrators that believe that password authentication is disallowed may not be enforcing strong password policies.