Updated version of SSH Secure Shell available
SSH advises all users of commercial and non-commercial versions of SSH Secure Shell for Servers, SSH Secure Shell for Workstations (running in server mode) and SSH Secure Shell for Windows Servers 3.0 through 3.11 to ensure the security of their systems. SSH Secure Shell for Workstations Windows client and SSH Secure Shell for Handhelds are NOT affected by this vulnerability.
Stephanie Schiebert, Technical Support Specialist at SSH Communications Security Inc. posted the following message to BugTraq:
There is an updated version, 3.1.2,of SSH Secure Shell available from the ftp site:
This version addresses a server vulnerability in versions 3.0.x to 3.1.0
with the AllowedAuthentications keyword.
Please see this page for more information on the vulnerability:
Please direct any questions to firstname.lastname@example.org .
By subscribing to our early morning news update, you will receive a daily digest of the latest security news published on Help Net Security.
With over 500 issues so far, reading our newsletter every Monday morning will keep you up-to-date with security risks out there.