id: openssh5.3-detect info: name: OpenSSH 5.3 Detection author: iamthefrogy severity: low tags: network,openssh description: OpenSSH 5.3 is vulnerable to username enumeration and DoS vulnerabilities. reference: - http://seclists.org/fulldisclosure/2016/Jul/51 - https://security-tracker.debian.org/tracker/CVE-2016-6210 - http://openwall.com/lists/oss-security/2016/08/01/2 network: - host: - "{{Hostname}}" - "{{Hostname}}:22" matchers: - type: word words: - "SSH-2.0-OpenSSH_5.3"