Updated version of SSH Secure Shell available
SSH advises all users of commercial and non-commercial versions of SSH Secure Shell for Servers, SSH Secure Shell for Workstations (running in server mode) and SSH Secure Shell for Windows Servers 3.0 through 3.11 to ensure the security of their systems. SSH Secure Shell for Workstations Windows client and SSH Secure Shell for Handhelds are NOT affected by this vulnerability.
Stephanie Schiebert, Technical Support Specialist at SSH Communications Security Inc. posted the following message to BugTraq:
There is an updated version, 3.1.2,of SSH Secure Shell available from the ftp site:
This version addresses a server vulnerability in versions 3.0.x to 3.1.0
with the AllowedAuthentications keyword.
Please see this page for more information on the vulnerability:
Please direct any questions to firstname.lastname@example.org .
Reading our newsletter every Monday will keep you up-to-date with security news.
Receive a daily digest of the latest security news.