Description
WRQ Reflection for Secure IT Windows Server 6.0 (formerly known as F-Secure SSH server) processes access and deny lists in a case-sensitive manner, when previous versions were case-insensitive, which might allow remote attackers to bypass intended restrictions and login to accounts that should be denied.
Affected products
- F-Secure / f-secure_ssh_server5.1 – 5.1
- F-Secure / f-secure_ssh_server5.2 – 5.2
- F-Secure / f-secure_ssh_server5.3 – 5.3
- wrq / wrq_reflection_for_secure_it_windows_server6.0 – 6.0