Lucene search
K

6 matches found

F5 Networks
F5 Networks
added 2023/02/21 7:45 p.m.34 views

K15013: OpenSSH vulnerability CVE-2011-0539

Security Advisory Description The keycertify function in usr.bin/ssh/key.c in OpenSSH 5.6 and 5.7, when generating legacy certificates using the -t command-line option in ssh-keygen, does not initialize the nonce field, which might allow remote attackers to obtain sensitive stack memory contents ...

7.5CVSS7.9AI score0.01797EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2023/02/15 5:54 a.m.2 views

SUSE CVE-2011-0539

The keycertify function in usr.bin/ssh/key.c in OpenSSH 5.6 and 5.7, when generating legacy certificates using the -t command-line option in ssh-keygen, does not initialize the nonce field, which might allow remote attackers to obtain sensitive stack memory contents or make it easier to conduct...

7.5CVSS8.1AI score0.01797EPSS
Exploits0References3
NVD
NVD
added 2011/02/10 6:0 p.m.33 views

CVE-2011-0539

The keycertify function in usr.bin/ssh/key.c in OpenSSH 5.6 and 5.7, when generating legacy certificates using the -t command-line option in ssh-keygen, does not initialize the nonce field, which might allow remote attackers to obtain sensitive stack memory contents or make it easier to conduct...

7.5CVSS6.3AI score0.01797EPSS
Exploits0References10
OSV
OSV
added 2011/02/10 6:0 p.m.3 views

DEBIAN-CVE-2011-0539

The keycertify function in usr.bin/ssh/key.c in OpenSSH 5.6 and 5.7, when generating legacy certificates using the -t command-line option in ssh-keygen, does not initialize the nonce field, which might allow remote attackers to obtain sensitive stack memory contents or make it easier to conduct...

7.5CVSS6.9AI score0.01797EPSS
Exploits0References1
Snyk
Snyk
added 2011/02/10 6:0 p.m.5 views

Access Restriction Bypass

Overview Affected versions of this package are vulnerable to Access Restriction Bypass. The keycertify function in usr.bin/ssh/key.c in OpenSSH 5.6 and 5.7, when generating legacy certificates using the -t command-line option in ssh-keygen, does not initialize the nonce field, which might allow...

5.3CVSS8.1AI score0.01797EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2011/02/10 12:0 a.m.9 views

PT-2011-2432

Name of the Vulnerable Software and Affected Versions OpenSSH versions 5.6 through 5.7 Description The issue is related to the key certify function in OpenSSH, specifically when generating legacy certificates using the -t command-line option in ssh-keygen. This function does not initialize the...

7.5CVSS7.2AI score0.01797EPSS
Exploits0References15
Rows per page
Query Builder