Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ibmIBM013FA972B221F244F8BCCA374CE74179E0B9C923882CB50738E9DB2E43E951D1
HistoryJun 16, 2018 - 10:03 p.m.

Security Bulletin: IBM Security Network Protection is affected by vulnerabilities in OpenSSH (CVE-2016-6210 CVE-2016-6515 CVE-2016-10009 CVE-2016-10011)

2018-06-1622:03:39
www.ibm.com
11

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

JSON

Summary

IBM Security Network Protection has addressed vulnerabilities in OpenSSH.

Vulnerability Details

CVEID: CVE-2016-10011**
DESCRIPTION:** OpenSSH could allow a local authenticated attacker to obtain sensitive information, caused by a privilege separation flaw. An attacker could exploit this vulnerability to obtain host private key material and other sensitive information.
CVSS Base Score: 5.5
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/119830&gt; for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N)

CVEID: CVE-2016-10009**
DESCRIPTION:** OpenSSH could allow a remote authenticated attacker to execute arbitrary code on the system, caused by the loading of a specially crafted PKCS#11 module across a forwarded agent channel. An attacker could exploit this vulnerability to write files or execute arbitrary code on the system.
CVSS Base Score: 6.3
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/119828&gt; for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L)

CVEID: CVE-2016-6515**
DESCRIPTION:** OpenSSH is vulnerable to a denial of service, caused by the failure to limit password lengths for password authentication by the auth_password function. A remote attacker could exploit this vulnerability using an overly long string to consume all available CPU resources.
CVSS Base Score: 7.5
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/115911&gt; for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)

CVEID: CVE-2016-6210**
DESCRIPTION:** OpenSSH could allow a remote attacker to obtain sensitive information, caused by the increased amount of time to calculate SHA256/SHA512 hash than BLOWFISH hash. An attacker could exploit this vulnerability using a covert timing channel to enumerate users on system that runs SSHD.
CVSS Base Score: 4.3
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/115128&gt; for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N)

Affected Products and Versions

IBM Security Network Protection 5.3.1
IBM Security Network Protection 5.3.3

Remediation/Fixes

Product

| VRMF| Remediation/First Fix
—|—|—
IBM Security Network Protection| Firmware version 5.3.1| Install Firmware 5.3.1.15 from the Available Updates page of the Local Management Interface, or by performing a One Time Scheduled Installation from SiteProtector.
Or
Download Firmware 5.3.1.15 from IBM Security License Key and Download Center and upload and install via the Available Updates page of the Local Management Interface.

Product VRMF Remediation/First Fix
IBM Security Network Protection Firmware version 5.3.3 Install Firmware 5.3.3.5 from the Available Updates page of the Local Management Interface, or by performing a One Time Scheduled Installation from SiteProtector.
Or
Download Firmware 5.3.3.5 from IBM Security License Key and Download Center and upload and install via the Available Updates page of the Local Management Interface.

Workarounds and Mitigations

None

Related

ibm 18
openvas 36
nessus 56
amazon 1
oraclelinux 2
redhat 2
centos 2
cloudfoundry 2
ubuntu 2
fedora 3
symantec 2
aix 2
mageia 1
archlinux 2
slackware 1
ubuntucve 4
prion 4
osv 8
redhatcve 4
cve 4
f5 5
alpinelinux 4
debiancve 4
seebug 2
packetstorm 4
veracode 1
debian 5
exploitpack 3
cloudlinux 1
checkpoint_advisories 1
zdt 4
freebsd_advisory 1
myhack58 1
paloalto 1
hackerone 1
freebsd 2
exploitdb 3
ibm
ibm
Security Bulletin: Multiple vulnerabilities in openssh affect IBM Flex System Manager (FSM)
2018-06-18 01:39:52
Security Bulletin: Vulnerabilities in OpenSSH affect IBM Chassis Management Module (CMM)
2019-01-31 02:40:01
Security Bulletin: Vulnerabilities in OpenSSH affect IBM BladeCenter Advanced Management Module (AMM)
2023-04-14 14:32:25
openvas
openvas
RedHat Update for openssh RHSA-2017:2029-01
2017-08-04 00:00:00
Huawei EulerOS: Security Advisory for openssh (EulerOS-SA-2017-1054)
2020-01-23 00:00:00
Huawei EulerOS: Security Advisory for openssh (EulerOS-SA-2017-1055)
2020-01-23 00:00:00
nessus
nessus
Amazon Linux AMI : openssh (ALAS-2017-898)
2017-10-04 00:00:00
Scientific Linux Security Update : openssh on SL7.x x86_64 (20170801)
2017-08-22 00:00:00
CentOS 7 : openssh (CESA-2017:2029)
2017-08-25 00:00:00
amazon
amazon
Medium: openssh
2017-10-03 11:00:00
oraclelinux
oraclelinux
openssh security, bug fix, and enhancement update
2017-08-07 00:00:00
openssh security update
2017-08-31 00:00:00
redhat
redhat
(RHSA-2017:2029) Moderate: openssh security, bug fix, and enhancement update
2017-08-01 05:57:17
(RHSA-2017:2563) Moderate: openssh security update
2017-08-31 13:09:34
centos
centos
openssh, pam_ssh_agent_auth security update
2017-08-24 01:40:16
openssh, pam_ssh_agent_auth security update
2017-08-31 18:50:28
cloudfoundry
cloudfoundry
USN-3061-1 OpenSSH vulnerability | Cloud Foundry
2016-08-25 00:00:00
USN-3538-1: OpenSSH vulnerabilities | Cloud Foundry
2018-02-01 00:00:00
ubuntu
ubuntu
OpenSSH vulnerabilities
2016-08-15 00:00:00
OpenSSH vulnerabilities
2018-01-22 00:00:00
fedora
fedora
[SECURITY] Fedora 25 Update: openssh-7.4p1-1.fc25
2017-01-06 20:25:39
[SECURITY] Fedora 24 Update: openssh-7.2p2-10.fc24
2016-07-20 17:50:40
[SECURITY] Fedora 24 Update: openssh-7.2p2-12.fc24
2016-08-10 07:24:41
symantec
symantec
SA136 : OpenSSH Vulnerabilities
2016-12-13 08:00:00
SA144 : OpenSSH Vulnerabilities January 2017
2017-03-02 08:00:00
aix
aix
AIX OpenSSH Vulnerability
2016-09-08 14:36:37
Vulnerabilities in OpenSSH affect AIX.
2017-02-05 23:36:10
mageia
mageia
Updated openssh packages fix security vulnerability
2016-08-31 18:32:33
archlinux
archlinux
[ASA-201612-20] openssh: multiple issues
2016-12-22 00:00:00
openssh: information leakage
2016-08-02 00:00:00
slackware
slackware
[slackware-security] openssh
2016-12-24 01:35:34
ubuntucve
ubuntucve
CVE-2016-10011
2017-01-04 00:00:00
CVE-2016-6210
2016-07-18 00:00:00
CVE-2016-6515
2016-08-07 00:00:00
prion
prion
Design/Logic Flaw
2017-01-05 02:59:00
Design/Logic Flaw
2017-02-13 17:59:00
Design/Logic Flaw
2017-01-05 02:59:00
osv
osv
CVE-2016-10011
2017-01-05 02:59:03
openssh - security update
2016-07-30 00:00:00
CVE-2016-6515
2016-08-07 21:59:00
redhatcve
redhatcve
CVE-2016-10011
2016-12-20 08:47:24
CVE-2016-6210
2016-07-18 09:18:22
CVE-2016-6515
2016-08-08 09:19:32
cve
cve
CVE-2016-10011
2017-01-05 02:59:00
CVE-2016-6210
2017-02-13 17:59:00
CVE-2016-6515
2016-08-07 21:59:00
f5
f5
K24324390 : OpenSSH vulnerability CVE-2016-10011
2017-01-27 00:00:00
K14845276 : OpenSSH vulnerability CVE-2016-6210
2016-12-23 00:00:00
K31440025 : OpenSSH vulnerability CVE-2016-10009
2017-01-24 00:00:00
alpinelinux
alpinelinux
CVE-2016-10011
2017-01-05 02:59:00
CVE-2016-6515
2016-08-07 21:59:00
CVE-2016-10009
2017-01-05 02:59:00
debiancve
debiancve
CVE-2016-10011
2017-01-05 02:59:00
CVE-2016-6210
2017-02-13 17:59:00
CVE-2016-10009
2017-01-05 02:59:00
seebug
seebug
OpenSSH information leak Vulnerability, CVE-2016-10011)
2016-12-21 00:00:00
OpenSSH remote code execution vulnerability, CVE-2016-10009)
2016-12-21 00:00:00
packetstorm
packetstorm
OpenSSHD 7.2p2 User Enumeration
2016-07-21 00:00:00
OpenSSHD 7.2p2 User Enumeration
2016-07-18 00:00:00
OpenSSH 7.2 Denial Of Service
2016-12-08 00:00:00
veracode
veracode
Information Disclosure
2019-01-15 09:20:13
debian
debian
[SECURITY] [DLA 594-1] openssh security update
2016-08-12 21:55:19
[SECURITY] [DSA 3626-1] openssh security update
2016-07-24 09:19:18
[SECURITY] [DLA 578-1] openssh security update
2016-07-30 21:40:46
exploitpack
exploitpack
OpenSSH 7.2 - Denial of Service
2016-12-07 00:00:00
OpenSSH 7.2p2 - Username Enumeration
2016-07-20 00:00:00
OpenSSHd 7.2p2 - Username Enumeration
2016-07-18 00:00:00
cloudlinux
cloudlinux
Fixed CVE-2016-10009 in openssh-5.3p1
2022-07-04 19:13:43
checkpoint_advisories
checkpoint_advisories
OpenSSH sshd auth_passwd Denial of Service (CVE-2016-6515)
2017-01-08 00:00:00
zdt
zdt
OpenSSH 7.2 - Denial of Service Exploit
2016-12-07 00:00:00
OpenSSHd 7.2p2 - Username Enumeration (1)
2016-07-18 00:00:00
OpenSSHd 7.2p2 - Username Enumeration (2)
2016-07-20 00:00:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-17:06.openssh
2017-08-10 00:00:00
myhack58
myhack58
OpenSSH is now in the risk of vulnerabilities can cause remote code execution-vulnerability warning-the black bar safety net
2016-12-21 00:00:00
paloalto
paloalto
OpenSSH Vulnerability
2016-11-17 17:02:00
hackerone
hackerone
Nextcloud: Password authentication at newsletter.nextcloud.com discloses username list
2019-01-08 09:59:42
freebsd
freebsd
FreeBSD -- OpenSSH Denial of Service vulnerability
2017-08-10 00:00:00
FreeBSD -- OpenSSH multiple vulnerabilities
2017-01-11 00:00:00
exploitdb
exploitdb
OpenSSH 7.2p2 - Username Enumeration
2016-07-20 00:00:00
OpenSSH 7.2 - Denial of Service
2016-12-07 00:00:00
OpenSSHd 7.2p2 - Username Enumeration
2016-07-18 00:00:00

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

JSON
Related for 013FA972B221F244F8BCCA374CE74179E0B9C923882CB50738E9DB2E43E951D1
ibm18openvas36nessus56amazon1oraclelinux2redhat2centos2cloudfoundry2ubuntu2fedora3symantec2aix2mageia1archlinux2slackware1ubuntucve4prion4osv8redhatcve4cve4f55alpinelinux4debiancve4seebug2packetstorm4veracode1debian5exploitpack3cloudlinux1checkpoint_advisories1zdt4freebsd_advisory1myhack581paloalto1hackerone1freebsd2exploitdb3