[Forgot Password]
Login  Register Subscribe

30430

 
 

423868

 
 

247621

 
 

909

 
 

194512

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2011-0539Date: (C)2011-02-10   (M)2023-12-22


The key_certify function in usr.bin/ssh/key.c in OpenSSH 5.6 and 5.7, when generating legacy certificates using the -t command-line option in ssh-keygen, does not initialize the nonce field, which might allow remote attackers to obtain sensitive stack memory contents or make it easier to conduct hash collision attacks.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 5.0
Exploit Score: 10.0
Impact Score: 2.9
 
CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality: PARTIAL
Integrity: NONE
Availability: NONE
  
Reference:
SECTRACK-1025028
SECUNIA-43181
SECUNIA-44269
BID-46155
ADV-2011-0284
SSRT100413
http://www.openwall.com/lists/oss-security/2011/02/04/2
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10673
http://www.openssh.com/txt/legacy-cert.adv
openssh-certificate-info-disclosure(65163)

CPE    2
cpe:/a:openbsd:openssh:5.7
cpe:/a:openbsd:openssh:5.6
CWE    1
CWE-264
OVAL    1
oval:org.secpod.oval:def:1076

© SecPod Technologies