Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2008-5161
Description:Error handling in the SSH protocol in (1) SSH Tectia Client and Server and Connector 4.0 through 4.4.11, 5.0 through 5.2.4, and 5.3 through 5.3.8; Client and Server and ConnectSecure 6.0 through 6.0.4; Server for Linux on IBM System z 6.0.4; Server for IBM z/OS 5.5.1 and earlier, 6.0.0, and 6.0.1; and Client 4.0-J through 4.3.3-J and 4.0-K through 4.3.10-K; and (2) OpenSSH 4.7p1 and possibly other versions, when using a block cipher algorithm in Cipher Block Chaining (CBC) mode, makes it easier for remote attackers to recover certain plaintext data from an arbitrary block of ciphertext in an SSH session via unknown vectors.
Test IDs: 1.3.6.1.4.1.25623.1.0.64802   1.3.6.1.4.1.25623.1.0.64931   1.3.6.1.4.1.25623.1.0.100153   1.3.6.1.4.1.25623.1.0.900179   1.3.6.1.4.1.25623.1.0.122441   1.3.6.1.4.1.25623.1.0.880802  
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2008-5161
http://lists.apple.com/archives/security-announce/2009/Nov/msg00000.html
BugTraq ID: 32319
http://www.securityfocus.com/bid/32319
Bugtraq: 20081121 OpenSSH security advisory: cbc.adv (Google Search)
http://www.securityfocus.com/archive/1/498558/100/0/threaded
Bugtraq: 20081123 Revised: OpenSSH security advisory: cbc.adv (Google Search)
http://www.securityfocus.com/archive/1/498579/100/0/threaded
CERT/CC vulnerability note: VU#958563
http://www.kb.cert.org/vuls/id/958563
HPdes Security Advisory: HPSBMA02447
http://marc.info/?l=bugtraq&m=125017764422557&w=2
HPdes Security Advisory: SSRT090062
http://marc.info/?l=bugtraq&m=125017764422557&w=2
http://isc.sans.org/diary.html?storyid=5366
http://support.avaya.com/elmodocs2/security/ASA-2008-503.htm
http://www.cpni.gov.uk/Docs/Vulnerability_Advisory_SSH.txt
http://osvdb.org/49872
http://osvdb.org/50035
http://osvdb.org/50036
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11279
RedHat Security Advisories: RHSA-2009:1287
http://rhn.redhat.com/errata/RHSA-2009-1287.html
http://www.securitytracker.com/id?1021235
http://www.securitytracker.com/id?1021236
http://www.securitytracker.com/id?1021382
http://secunia.com/advisories/32740
http://secunia.com/advisories/32760
http://secunia.com/advisories/32833
http://secunia.com/advisories/33121
http://secunia.com/advisories/33308
http://secunia.com/advisories/34857
http://secunia.com/advisories/36558
http://sunsolve.sun.com/search/document.do?assetkey=1-66-247186-1
http://www.vupen.com/english/advisories/2008/3172
http://www.vupen.com/english/advisories/2008/3173
http://www.vupen.com/english/advisories/2008/3409
http://www.vupen.com/english/advisories/2009/1135
http://www.vupen.com/english/advisories/2009/3184
XForce ISS Database: openssh-sshtectia-cbc-info-disclosure(46620)
https://exchange.xforce.ibmcloud.com/vulnerabilities/46620




© 1998-2024 E-Soft Inc. All rights reserved.