Lucene search

[email protected]CVE-2011-0539

HistoryFeb 10, 2011 - 6:00 p.m.

CVE-2011-0539

2011-02-1018:00:57

CWE-264

[email protected]

web.nvd.nist.gov

openssh

key_certify

ssh-keygen

cve-2011-0539

nvd

security vulnerability

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

6.4 Medium

AI Score

Confidence

Low

0.007 Low

EPSS

Percentile

80.4%

JSON

The key_certify function in usr.bin/ssh/key.c in OpenSSH 5.6 and 5.7, when generating legacy certificates using the -t command-line option in ssh-keygen, does not initialize the nonce field, which might allow remote attackers to obtain sensitive stack memory contents or make it easier to conduct hash collision attacks.

Affected configurations

NVD

Node

openbsdopensshMatch5.6

openbsdopensshMatch5.7

CPENameOperatorVersion
openbsd:opensshopenbsd openssheq5.6
openbsd:opensshopenbsd openssheq5.7

CPE	Name	Operator	Version
openbsd:openssh	openbsd openssh	eq	5.6
openbsd:openssh	openbsd openssh	eq	5.7

References

h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02794777

kb.juniper.net/InfoCenter/index?page=content&id=JSA10673

secunia.com/advisories/43181

secunia.com/advisories/44269

www.openssh.com/txt/legacy-cert.adv

www.openwall.com/lists/oss-security/2011/02/04/2

www.securityfocus.com/bid/46155

www.securitytracker.com/id?1025028

www.vupen.com/english/advisories/2011/0284

exchange.xforce.ibmcloud.com/vulnerabilities/65163

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

6.4 Medium

AI Score

Confidence

Low

0.007 Low

EPSS

Percentile

80.4%

JSON

Related for CVE-2011-0539

ubuntucve1 openvas2 prion1 f52 nessus1 cvelist1 debiancve1 nvd1 securityvulns2