CVE-2011-0539

🗓️ 10 Feb 2011 18:00:57Reported by [email protected]Type

The key_certify function in OpenSSH 5.6 and 5.7 does not initialize the nonce field when generating legacy certificates, potentially enabling remote attackers to access sensitive stack memory contents or conduct hash collision attacks

Reporter	Title	Published	Views	Family All 85
Tenable Nessus	OpenSSH Legacy Certificate Signing Information Disclosure	11 Feb 201100:00	–	nessus
Tenable Nessus	OpenSSH Legacy Certificate Signing Information Disclosure	9 Feb 201100:00	–	nessus
CVE	CVE-2011-0539	10 Feb 201117:00	–	cve
Cvelist	CVE-2011-0539	10 Feb 201117:00	–	cvelist
Debian CVE	CVE-2011-0539	10 Feb 201117:00	–	debiancve
EUVD	EUVD-2011-0557	7 Oct 202500:30	–	euvd
F5 Networks	K15013: OpenSSH vulnerability CVE-2011-0539	21 Feb 202319:45	–	f5
F5 Networks	SOL15013 - OpenSSH vulnerability CVE-2011-0539	25 Feb 201400:00	–	f5
OpenVAS	OpenSSH Legacy Certificate Signing Information Disclosure Vulnerability	7 Feb 201100:00	–	openvas
OpenVAS	OpenSSH Legacy Certificate Signing Information Disclosure Vulnerability	7 Feb 201100:00	–	openvas

NVD

Node

openbsd opensshMatch5.6

openbsd opensshMatch5.7

Source	Link
vupen	www.vupen.com/english/advisories/2011/0284
exchange	www.exchange.xforce.ibmcloud.com/vulnerabilities/65163
openwall	www.openwall.com/lists/oss-security/2011/02/04/2
secunia	www.secunia.com/advisories/44269
securitytracker	www.securitytracker.com/id
securityfocus	www.securityfocus.com/bid/46155
openssh	www.openssh.com/txt/legacy-cert.adv
h20000	www.h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp
secunia	www.secunia.com/advisories/43181
kb	www.kb.juniper.net/InfoCenter/index

29 May 2026 21:16Current

6.3Medium risk

Vulners AI Score6.3

CVSS 25

CVSS 3.17.5

EPSS0.02075