Developers Documentation

×

Warning

0 error for file:https://clearos.com/dokuwiki2/lib/exe/css.php?t=dokuwiki&tseed=82873f9c9a1f5784b951644363f20ef8

User Tools

Site Tools


CVE 2010-5107

'The default configuration of OpenSSH through 6.1 enforces a fixed time limit between establishing a TCP connection and completing a login, which makes it easier for remote attackers to cause a denial of service (connection-slot exhaustion) by periodically making many new TCP connections.'

ClearCenter response

Short response

Mitigated with active Intrusion Prevention enabled.

Long response

While this DoS issue can affect ClearOS, the risk is low to the system with Intrusion Prevention services running and active updates of the Intrusion Prevention systems which watch for repetitive connections and block attempts.

Resolution

Install, enable and subscribe to Intrusion Prevention and Intrusion Prevention updates.

content/en_us/announcements_cve_cve-2010-5107.txt · Last modified: 2014/12/22 11:31 by dloper

https://clearos.com/dokuwiki2/lib/exe/indexer.php?id=content%3Aen_us%3Aannouncements_cve_cve-2010-5107&1569249845