CVE-2008-5161

Description

Error handling in the SSH protocol in (1) SSH Tectia Client and Server and Connector 4.0 through 4.4.11, 5.0 through 5.2.4, and 5.3 through 5.3.8; Client and Server and ConnectSecure 6.0 through 6.0.4; Server for Linux on IBM System z 6.0.4; Server for IBM z/OS 5.5.1 and earlier, 6.0.0, and 6.0.1; and Client 4.0-J through 4.3.3-J and 4.0-K through 4.3.10-K; and (2) OpenSSH 4.7p1 and possibly other versions, when using a block cipher algorithm in Cipher Block Chaining (CBC) mode, makes it easier for remote attackers to recover certain plaintext data from an arbitrary block of ciphertext in an SSH session via unknown vectors.

References

Link	Tags
http://openssh.org/txt/cbc.adv
http://sunsolve.sun.com/search/document.do?assetkey=1-66-247186-1	vendor advisory
http://www.securityfocus.com/bid/32319	vdb entry
http://secunia.com/advisories/33121	third party advisory
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05157667
http://osvdb.org/49872	vdb entry
http://secunia.com/advisories/33308	third party advisory
http://rhn.redhat.com/errata/RHSA-2009-1287.html	vendor advisory
http://www.cpni.gov.uk/Docs/Vulnerability_Advisory_SSH.txt
http://www.securitytracker.com/id?1021382	vdb entry
https://kc.mcafee.com/corporate/index?page=content&id=SB10163
http://osvdb.org/50036	vdb entry
http://secunia.com/advisories/32833	third party advisory
http://secunia.com/advisories/36558	third party advisory
http://osvdb.org/50035	vdb entry
http://www.ssh.com/company/news/article/953/	vendor advisory
http://www.securitytracker.com/id?1021235	vdb entry
http://secunia.com/advisories/34857	third party advisory
http://support.avaya.com/elmodocs2/security/ASA-2008-503.htm
http://support.attachmate.com/techdocs/2398.html
http://www.rtpro.yamaha.co.jp/RT/FAQ/Security/CPNI957037.html
http://www.vupen.com/english/advisories/2008/3173	vdb entry
http://www.securityfocus.com/archive/1/498579/100/0/threaded	mailing list
https://exchange.xforce.ibmcloud.com/vulnerabilities/46620	vdb entry
http://secunia.com/advisories/32740	third party advisory vendor advisory
http://www.vupen.com/english/advisories/2009/1135	vdb entry
http://secunia.com/advisories/32760	third party advisory vendor advisory
http://www.vupen.com/english/advisories/2009/3184	vdb entry
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705
http://www.securitytracker.com/id?1021236	vdb entry
https://kc.mcafee.com/corporate/index?page=content&id=SB10106
http://marc.info/?l=bugtraq&m=125017764422557&w=2	vendor advisory
http://isc.sans.org/diary.html?storyid=5366
http://lists.apple.com/archives/security-announce/2009/Nov/msg00000.html	vendor advisory
http://www.vupen.com/english/advisories/2008/3409	vdb entry
http://www.vupen.com/english/advisories/2008/3172	vdb entry
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11279	vdb entry signature
http://www.securityfocus.com/archive/1/498558/100/0/threaded	mailing list
http://support.apple.com/kb/HT3937
http://www.kb.cert.org/vuls/id/958563	third party advisory us government resource

Frequently Asked Questions

What is the severity of CVE-2008-5161?: CVE-2008-5161 has been scored as a low severity vulnerability.
How to fix CVE-2008-5161?: To fix CVE-2008-5161, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2008-5161 being actively exploited in the wild?: It is possible that CVE-2008-5161 is being exploited or will be exploited in a near future based on public information. According to its EPSS score, there is a ~3% probability that this vulnerability will be exploited by malicious actors in the next 30 days.

Description

Category

CWE-200 – Exposure of Sensitive Information to an Unauthorized Actor

References

Frequently Asked Questions