JVN/CVE Demo: Cveinfos

CVE

Id: 14004
CVE No.: CVE-2005-2798
Status: Candidate
Description: sshd in OpenSSH before 4.2, when GSSAPIDelegateCredentials is enabled, allows GSSAPI credentials to be delegated to clients who log in using non-GSSAPI methods, which could cause those credentials to be exposed to untrusted users or hosts.
Phase: Assigned (20050906)
Votes: None (candidate not yet proposed)
Comments

Actions

Related CVE References

Id	CVE Id	CVE No.	Reference	Actions
103191	14004	CVE-2005-2798	MLIST:[openssh-unix-announce] 20050901 Announce: OpenSSH 4.2 released	View
103192	14004	CVE-2005-2798	URL:http://www.mindrot.org/pipermail/openssh-unix-announce/2005-September/000083.html	View
103193	14004	CVE-2005-2798	CONFIRM:http://support.avaya.com/elmodocs2/security/ASA-2006-016.htm	View
103194	14004	CVE-2005-2798	CONFIRM:http://support.avaya.com/elmodocs2/security/ASA-2006-033.htm	View
103195	14004	CVE-2005-2798	HP:HPSBUX02090	View
103196	14004	CVE-2005-2798	URL:http://www.securityfocus.com/archive/1/archive/1/421411/100/0/threaded	View
103197	14004	CVE-2005-2798	HP:SSRT051058	View
103198	14004	CVE-2005-2798	URL:http://www.securityfocus.com/archive/1/archive/1/421411/100/0/threaded	View
103199	14004	CVE-2005-2798	MANDRIVA:MDKSA-2005:172	View
103200	14004	CVE-2005-2798	URL:http://www.mandriva.com/security/advisories?name=MDKSA-2005:172	View
103201	14004	CVE-2005-2798	REDHAT:RHSA-2005:527	View
103202	14004	CVE-2005-2798	URL:http://www.redhat.com/support/errata/RHSA-2005-527.html	View
103203	14004	CVE-2005-2798	SCO:SCOSA-2005.53	View
103204	14004	CVE-2005-2798	URL:ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.53/SCOSA-2005.53.txt	View
103205	14004	CVE-2005-2798	SUSE:SUSE-SR:2006:003	View
103206	14004	CVE-2005-2798	URL:http://lists.suse.com/archive/suse-security-announce/2006-Feb/0001.html	View
103207	14004	CVE-2005-2798	UBUNTU:USN-209-1	View
103208	14004	CVE-2005-2798	URL:http://www.ubuntulinux.org/support/documentation/usn/usn-209-1	View
103209	14004	CVE-2005-2798	BID:14729	View
103210	14004	CVE-2005-2798	URL:http://www.securityfocus.com/bid/14729	View
103211	14004	CVE-2005-2798	OVAL:oval:org.mitre.oval:def:9717	View
103212	14004	CVE-2005-2798	URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:9717	View
103213	14004	CVE-2005-2798	VUPEN:ADV-2006-0144	View
103214	14004	CVE-2005-2798	URL:http://www.vupen.com/english/advisories/2006/0144	View
103215	14004	CVE-2005-2798	OSVDB:19141	View
103216	14004	CVE-2005-2798	URL:http://www.osvdb.org/19141	View
103217	14004	CVE-2005-2798	OVAL:oval:org.mitre.oval:def:1345	View
103218	14004	CVE-2005-2798	URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1345	View
103219	14004	CVE-2005-2798	OVAL:oval:org.mitre.oval:def:1566	View
103220	14004	CVE-2005-2798	URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1566	View
103221	14004	CVE-2005-2798	SECTRACK:1014845	View
103222	14004	CVE-2005-2798	URL:http://securitytracker.com/id?1014845	View
103223	14004	CVE-2005-2798	SECUNIA:16686	View
103224	14004	CVE-2005-2798	URL:http://secunia.com/advisories/16686	View
103225	14004	CVE-2005-2798	SECUNIA:18010	View
103226	14004	CVE-2005-2798	URL:http://secunia.com/advisories/18010	View
103227	14004	CVE-2005-2798	SECUNIA:18406	View
103228	14004	CVE-2005-2798	URL:http://secunia.com/advisories/18406	View
103229	14004	CVE-2005-2798	SECUNIA:17077	View
103230	14004	CVE-2005-2798	URL:http://secunia.com/advisories/17077	View
103231	14004	CVE-2005-2798	SECUNIA:17245	View
103232	14004	CVE-2005-2798	URL:http://secunia.com/advisories/17245	View
103233	14004	CVE-2005-2798	SECUNIA:18717	View
103234	14004	CVE-2005-2798	URL:http://secunia.com/advisories/18717	View
103235	14004	CVE-2005-2798	SECUNIA:18507	View
103236	14004	CVE-2005-2798	URL:http://secunia.com/advisories/18507	View
103237	14004	CVE-2005-2798	SECUNIA:18661	View
103238	14004	CVE-2005-2798	URL:http://secunia.com/advisories/18661	View
103239	14004	CVE-2005-2798	XF:hpux-secure-shell-dos(24064)	View

Related JVN

Id	JVN No.	Title	Summary	CVE No.	CVE Id	CVSS_v2	CVSS_v3	JVN URL	Actions
62259	JVNDB-2005-000461	Linux Kernel の CSI procfs interface におけるシステムメモリを大量に消費する脆弱性	------------	CVE-2005-2800	14004	2.1		http://jvndb.jvn.jp/ja/contents/2005/JVNDB-2005-000461.html	View

Message	Memory use
Component initialization	1.39 MB
Controller action start	1.49 MB
Controller render start	2.33 MB
View render complete	2.81 MB

Message	Time in ms	Graph
Core Processing (Derived from $_SERVER["REQUEST_TIME"])	4.71
Event: Controller.initialize	0.02
Event: Controller.startup	0.07
Controller action	486.03
Event: Controller.beforeRender	4.71
» Processing toolbar data	4.61
Rendering View	17.37
» Event: View.beforeRender	0.02
» Rendering APP/View/Cveinfos/view.ctp	16.19
» Event: View.afterRender	0.02
» Event: View.beforeLayout	0.02
» Rendering APP/View/Layouts/default.ctp	0.68
» » Rendering CORE/Cake/View/Elements/sql_dump.ctp	0.13
Event: View.afterLayout	0.00

Constant	Value
APP	/virtual/inogo77/public_html/jvn/app/
APP_DIR	app
APPLIBS	/virtual/inogo77/public_html/jvn/app/Lib/
CACHE	/virtual/inogo77/public_html/jvn/app/tmp/cache/
CAKE	/virtual/inogo77/public_html/jvn/lib/Cake/
CAKE_CORE_INCLUDE_PATH	/virtual/inogo77/public_html/jvn/lib
CORE_PATH	/virtual/inogo77/public_html/jvn/lib/
CAKE_VERSION	2.6.0
CSS	/virtual/inogo77/public_html/jvn/app/webroot/css/
CSS_URL	css/
DS	/
FULL_BASE_URL	http://inogo77.s500.xrea.com
IMAGES	/virtual/inogo77/public_html/jvn/app/webroot/img/
IMAGES_URL	img/
JS	/virtual/inogo77/public_html/jvn/app/webroot/js/
JS_URL	js/
LOGS	/virtual/inogo77/public_html/jvn/app/tmp/logs/
ROOT	/virtual/inogo77/public_html/jvn
TESTS	/virtual/inogo77/public_html/jvn/app/Test/
TMP	/virtual/inogo77/public_html/jvn/app/tmp/
VENDORS	/virtual/inogo77/public_html/jvn/vendors/
WEBROOT_DIR	webroot
WWW_ROOT	/virtual/inogo77/public_html/jvn/app/webroot/

Environment Variable	Value
Php Version	5.6.40
Phprc	php56.ini
Php Fcgi Children	1
Pwd	/virtual/inogo77/public_html/.fast-cgi-bin
Php Fcgi Max Requests	10000
Shlvl	0
Path	/usr/local/bin:/usr/bin:/bin
Script Name	/jvn/app/webroot/index.php
Request Uri	/jvn/cveinfos/view/14004
Query String
Request Method	GET
Server Protocol	HTTP/1.1
Gateway Interface	CGI/1.1
Redirect Url	/jvn/app/webroot/cveinfos/view/14004
Remote Port	62545
Script Filename	/virtual/inogo77/public_html/jvn/app/webroot/index.php
Server Admin	[no address given]
Context Document Root	/virtual/inogo77/public_html
Context Prefix
Request Scheme	http
Document Root	/virtual/inogo77/public_html
Remote Addr	216.73.216.223
Server Port	80
Server Addr	160.251.151.205
Server Name	inogo77.s500.xrea.com
Server Software	Apache
Server Signature
Http Connection	close
Http Cache Control	max-age=259200
Http X Forwarded For	10.1.148.26
Http Via	1.1 squid-proxy-5b5d847c96-7f7gz (squid/6.13)
Http Host	inogo77.s500.xrea.com
Http Accept Encoding	gzip, br, zstd, deflate
Http User Agent	Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)
Http Accept	/
Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Suspectharddos	1
Suspectdos	1
X Dostranslated Ip	216.73.216.223
Mm Country Code	US
Mmdb Info	result found
Mmdb Addr	216.73.216.223
Unique Id	aODlQK3RsWyzMsDM6oYAQQAAASQ
Redirect Status	200
Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect Suspectharddos	1
Redirect Suspectdos	1
Redirect X Dostranslated Ip	216.73.216.223
Redirect Mm Country Code	US
Redirect Mmdb Info	result found
Redirect Mmdb Addr	216.73.216.223
Redirect Unique Id	aODlQK3RsWyzMsDM6oYAQQAAASQ
Redirect Redirect Status	200
Redirect Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect Redirect Suspectharddos	1
Redirect Redirect Suspectdos	1
Redirect Redirect X Dostranslated Ip	216.73.216.223
Redirect Redirect Mm Country Code	US
Redirect Redirect Mmdb Info	result found
Redirect Redirect Mmdb Addr	216.73.216.223
Redirect Redirect Unique Id	aODlQK3RsWyzMsDM6oYAQQAAASQ
Fcgi Role	RESPONDER
Php Self	/jvn/app/webroot/index.php
Request Time Float	1759569216.4037
Request Time	1759569216

CVE

Actions

Related CVE References

Related JVN

Request History

Session

Request

Cake Params

Post data

Query string

Cookie

Current Route

Sql Logs

default

Memory

Timers

Logs

View Variables

App Constants

CakePHP Constants

PHP Environment

Included Files

Include Paths

Included Files