The verify_host_key function in sshconnect.c in the client in OpenSSH 6.6 and previous versions allows remote servers to trigger the skipping of SSHFP DNS RR checking by presenting an unacceptable HostCertificate.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
openbsd openssh 6.4 |
||
openbsd openssh 6.3 |
||
openbsd openssh 6.5 |
||
openbsd openssh 6.2 |
||
openbsd openssh 6.1 |
||
openbsd openssh 6.0 |
||
openbsd openssh |