Summary
The host is installed with OpenSSH and is prone to information disclosure vulnerability.
Impact
Successful exploits will allow attackers to obtain four bytes of plaintext from an encrypted session.
Impact Level: Application
Solution
Upgrade to higher version
http://www.openssh.com/portable.html
Insight
The flaw is due to the improper handling of errors within an SSH session encrypted with a block cipher algorithm in the Cipher-Block Chaining 'CBC' mode.
Affected
Versions prior to OpenSSH 5.2 are vulnerable. Various versions of SSH Tectia are also affected.
References
Updated on 2015-03-25
Severity
Classification
-
CVE CVE-2008-5161 -
CVSS Base Score: 2.6
AV:N/AC:H/Au:N/C:P/I:N/A:N
Related Vulnerabilities