Lucene search

[email protected]NVD:CVE-2012-5975

HistoryDec 04, 2012 - 11:55 p.m.

CVE-2012-5975

2012-12-0423:55:00

CWE-287

[email protected]

web.nvd.nist.gov

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

Confidence

Low

EPSS

0.601

Percentile

97.8%

JSON

The SSH USERAUTH CHANGE REQUEST feature in SSH Tectia Server 6.0.4 through 6.0.20, 6.1.0 through 6.1.12, 6.2.0 through 6.2.5, and 6.3.0 through 6.3.2 on UNIX and Linux, when old-style password authentication is enabled, allows remote attackers to bypass authentication via a crafted session involving entry of blank passwords, as demonstrated by a root login session from a modified OpenSSH client with an added input_userauth_passwd_changereq call in sshconnect2.c.

Affected configurations

Nvd

Node

sshtectia_serverMatch6.0.4

sshtectia_serverMatch6.0.5

sshtectia_serverMatch6.0.6

sshtectia_serverMatch6.0.7

sshtectia_serverMatch6.0.8

sshtectia_serverMatch6.0.9

sshtectia_serverMatch6.0.10

sshtectia_serverMatch6.0.11

sshtectia_serverMatch6.0.12

sshtectia_serverMatch6.0.13

sshtectia_serverMatch6.0.14

sshtectia_serverMatch6.0.17

sshtectia_serverMatch6.0.18

sshtectia_serverMatch6.0.19

sshtectia_serverMatch6.0.20.

sshtectia_serverMatch6.1.0

sshtectia_serverMatch6.1.1

sshtectia_serverMatch6.1.2

sshtectia_serverMatch6.1.3

sshtectia_serverMatch6.1.4

sshtectia_serverMatch6.1.5

sshtectia_serverMatch6.1.6

sshtectia_serverMatch6.1.7

sshtectia_serverMatch6.1.8

sshtectia_serverMatch6.1.9

sshtectia_serverMatch6.1.12

sshtectia_serverMatch6.2.0

sshtectia_serverMatch6.2.1

sshtectia_serverMatch6.2.2

sshtectia_serverMatch6.2.3

sshtectia_serverMatch6.2.4

sshtectia_serverMatch6.2.5

sshtectia_serverMatch6.3.0

sshtectia_serverMatch6.3.1

sshtectia_serverMatch6.3.2

AND

linuxlinux_kernel

References

archives.neohapsis.com/archives/fulldisclosure/2012-12/0013.html

archives.neohapsis.com/archives/fulldisclosure/2012-12/0065.html

www.exploit-db.com/exploits/23082/

github.com/rapid7/metasploit-framework/blob/master/modules/exploits/unix/ssh/tectia_passwd_changereq.rb

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

Confidence

Low

EPSS

0.601

Percentile

97.8%

JSON

Related for NVD:CVE-2012-5975

prion1 nessus1 cvelist1 metasploit1 cve1