How to remediate CVE-2010-5107
Issue
-
How to remediate CVE-2010-5107
-
What is the fix for CVE-2010-5107?
-
Our security scan (Qualys) found that we are running a version of OpenSSH that is vulnerable to CVE-2010-5107. Their recommendation is to update to OpenSSH 6.1 or higher.
-
Does setting the "Maxstartups" parameter in /etc/ssh/sshd_config to 10:30:60 properly mitigate the security issue?
Environment
- Red Hat Enterprise Linux 5
- Red Hat Enterprise Linux 6
- OpenSSH 6.1
Subscriber exclusive content
A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.