SSH CBC/CFB Data Stream Injection

medium Nessus Plugin ID 10268

Synopsis

The remote SSH server contains a cryptographical weakness that might allow a third party to decrypt the traffic.

Description

The remote host is running a version of SSH that is older than (or as old as) version 1.2.23.

The remote version of this software is vulnerable to a known plaintext attack, which could allow an attacker to insert encrypted packets in the client - server stream that will be deciphered by the server, thus allowing the attacker to execute arbitrary commands on the remote server

Solution

Upgrade to version 1.2.25 of SSH which solves this problem.

Plugin Details

Severity: Medium

ID: 10268

File Name: ssh_insertion.nasl

Version: 1.36

Type: remote

Family: Misc.

Published: 7/23/1999

Updated: 7/30/2018

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Low

Score: 3.4

CVSS v2

Risk Factor: Medium

Base Score: 5.1

Temporal Score: 3.8

Vector: CVSS2#AV:N/AC:H/Au:N/C:P/I:P/A:P

Vulnerability Information

Exploit Ease: No known exploits are available

Vulnerability Publication Date: 6/12/1998

Reference Information

CVE: CVE-1999-1085

Detections

Analytics