CSIRT Panam\u00e1 Aviso 2016-01- Vulnerabilidades en cliente de OpenSSH
\nGravedad: Alta
\nFecha de publicaci\u00f3n: Enero 14, 2016
\nFecha de modificaci\u00f3n: Enero 14, 2016
\n\u00daltima revisi\u00f3n: Revisi\u00f3n A.
\nFuente: https:\/\/www.us-cert.gov\/ncas\/current-activity\/2016\/01\/14\/OpenSSH-Client-Vulnerability
\nhttps:\/\/www.kb.cert.org\/vuls\/id\/456088<\/p>\n
Sistemas Afectados
\nOpenSSH versiones 5.4 hasta\u00a07.1<\/p>\n
I. Descripci\u00f3n
\nOpenSSH versi\u00f3n 7.1p2 ha sido liberado para hacer frente a las vulnerabilidades en las versiones 5.4 a\u00a07.1p1.
\nLa explotaci\u00f3n de una de estas vulnerabilidades podr\u00eda permitir a un atacante remoto obtener informaci\u00f3n sensible de un sistema afectado.<\/p>\n
II. Impacto
\nComplejidad de acceso: Alta
\nAutenticaci\u00f3n: No requerida
\nTipo de impacto: Compromiso de datos privados (clave ssh privada), ejecucion remota de codigo.<\/p>\n
III. Referencia a soluciones, herramientas e informaci\u00f3n
\nSe anima a los usuarios y administradores que apliquen la actualizaci\u00f3n necesaria. http:\/\/www.openssh.com\/txt\/release-7.1p2<\/p>\n
IV. Informaci\u00f3n de contacto
\nCSIRT PANAMA
\nAutoridad Nacional para la Innovaci\u00f3n Gubernamental
\nE-Mail: info@cert.pa
\nWeb: http:\/\/www.cert.pa<\/p>\n","protected":false},"excerpt":{"rendered":"
CSIRT Panam\u00e1 Aviso 2016-01- Vulnerabilidades en cliente de OpenSSH Gravedad: Alta Fecha de publicaci\u00f3n: Enero 14, 2016 Fecha de modificaci\u00f3n: Enero 14, 2016 \u00daltima revisi\u00f3n: Revisi\u00f3n A. Fuente: https:\/\/www.us-cert.gov\/ncas\/current-activity\/2016\/01\/14\/OpenSSH-Client-Vulnerability https:\/\/www.kb.cert.org\/vuls\/id\/456088 Sistemas Afectados OpenSSH versiones 5.4…<\/p>\n","protected":false},"author":5,"featured_media":594,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"om_disable_all_campaigns":false,"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"_uf_show_specific_survey":0,"_uf_disable_surveys":false,"footnotes":""},"categories":[4],"tags":[49,29,64],"class_list":["post-595","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-avisos-de-seguridad","tag-ciberseguridad","tag-openssh","tag-seguridad"],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/posts\/595","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/users\/5"}],"replies":[{"embeddable":true,"href":"https:\/\/cert.pa\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=595"}],"version-history":[{"count":1,"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/posts\/595\/revisions"}],"predecessor-version":[{"id":596,"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/posts\/595\/revisions\/596"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/media\/594"}],"wp:attachment":[{"href":"https:\/\/cert.pa\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=595"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/cert.pa\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=595"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/cert.pa\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=595"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}