VULHUB ™

A flaw exists in the RedHat Linux RPM distributed by Zedz Consulting, version 1.2.27-8i. Due to a flaw in authentication due to a patch to support PAM, its possible for anyone to log in to any valid account via ssh. This is NOT a flaw in ssh, or sshd, but rather in the patch applied in the RPM distributed. Users of SSH 1.2.27 or OpenSSH are not vulnerable to this. Only those who installed this specific RPM from the Zedz Consulting ftp site are susceptible.

A flaw exists in the RedHat Linux RPM distributed by Zedz Consulting, version 1.2.27-8i. Due to a flaw in authentication due to a patch to support PAM, its possible for anyone to log in to any valid account via ssh. This is NOT a flaw in ssh, or sshd, but rather in the patch applied in the RPM distributed. Users of SSH 1.2.27 or OpenSSH are not vulnerable to this. Only those who installed this specific RPM from the Zedz Consulting ftp site are susceptible.