Detections
Analytics

OpenSSH < 5.2 CBC Plaintext Disclosure

medium Nessus Plugin ID 44065

Language:

Synopsis

The SSH service running on the remote host has an information disclosure vulnerability.

Description

The version of OpenSSH running on the remote host has an information disclosure vulnerability. A design flaw in the SSH specification could allow a man-in-the-middle attacker to recover up to 32 bits of plaintext from an SSH-protected connection in the standard configuration. An attacker could exploit this to gain access to sensitive information.

Solution

Upgrade to OpenSSH 5.2 or later.

See Also

http://www.nessus.org/u?4984aeb9

http://www.openssh.com/txt/cbc.adv

http://www.openssh.com/txt/release-5.2

Plugin Details

Severity: Medium

ID: 44065

File Name: openssh_plaintext_recovery.nasl

Version: 1.5

Type: remote

Family: Misc.

Published: 9/27/2011

Updated: 3/27/2024

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Low

Score: 3.4

CVSS v2

Risk Factor: Medium

Base Score: 4

Temporal Score: 3

Vector: CVSS2#AV:N/AC:L/Au:S/C:N/I:P/A:N

Vulnerability Information

CPE: cpe:/a:openbsd:openssh

Required KB Items: installed_sw/OpenSSH

Exploit Ease: No known exploits are available

Patch Publication Date: 2/22/2009

Vulnerability Publication Date: 11/14/2008

Reference Information

CVE: CVE-2008-5161

BID: 32319

CWE: 200

CERT: 958563