exploits , vulnerabilities , articles , OpenSSH CBC Mode Information Disclosure Vulnerability

Title	OpenSSH CBC Mode Information Disclosure Vulnerability
Published	2008-11-14-12:00AM
Updated	2008-11-17-06:04PM
Class	Design Error
CVE
Remote	Yes
Local	No
Credit	Martin Albrecht, Kenny Paterson, and Gaven Watson
Vulnerable	SSH Communications Security Tectia Server for Linux on IBM System z 6.0.4 SSH Communications Security Tectia Server for IBM z/OS 6.0.1 SSH Communications Security Tectia Server for IBM z/OS 6.0 SSH Communications Security Tectia Server for IBM z/OS 5.5.1 SSH Communications Security Tectia Server for IBM z/OS 5.5.1 SSH Communications Security Tectia Server 6.0.4 SSH Communications Security Tectia Server 5.3.8 SSH Communications Security Tectia Server 5.2.4 SSH Communications Security Tectia Server 4.4.11 SSH Communications Security Tectia Server 4.4.6 SSH Communications Security Tectia Server 4.4.5 SSH Communications Security Tectia Server 4.4.4 SSH Communications Security Tectia Server 4.4.3 SSH Communications Security Tectia Server 4.4.2 SSH Communications Security Tectia Server 4.4 SSH Communications Security Tectia ConnectSecure 6.0.4 SSH Communications Security Tectia Connector 5.3.8 SSH Communications Security Tectia Connector 5.2.4 SSH Communications Security Tectia Connector 4.4.11 SSH Communications Security Tectia Client 6.0.4 SSH Communications Security Tectia Client 5.3.8 SSH Communications Security Tectia Client 5.2.4 SSH Communications Security Tectia Client 4.4.11 SSH Communications Security Tectia Client 4.4.6 SSH Communications Security Tectia Client 4.4.5 SSH Communications Security Tectia Client 4.4.4 SSH Communications Security Tectia Client 4.4.3 SSH Communications Security Tectia Client 4.4.2 SSH Communications Security Tectia Client 4.4.1 SSH Communications Security Tectia Client 4.4 SSH Communications Security Tectia Client 4.3.9 k SSH Communications Security Tectia Client 4.3.8 K SSH Communications Security Tectia Client 4.3.2 J SSH Communications Security Tectia Client 4.3.1 J SSH Communications Security Tectia Client 4.3.3J SSH Communications Security Tectia Client 4.3.10K OpenSSH OpenSSH 4.7p1
Not Vulnerable	SSH Communications Security Tectia Server for Linux on IBM System z 6.0.5 SSH Communications Security Tectia Server for IBM z/OS 6.0.2 SSH Communications Security Tectia Server for IBM z/OS 5.5.2 SSH Communications Security Tectia Server for IBM z/OS 5.5.2 SSH Communications Security Tectia Server 6.0.5 SSH Communications Security Tectia Server 5.3.9 SSH Communications Security Tectia Server 5.2.5 SSH Communications Security Tectia Server 4.4.12 SSH Communications Security Tectia ConnectSecure 6.0.5 SSH Communications Security Tectia Client 6.0.5 SSH Communications Security Tectia Client 5.3.9 SSH Communications Security Tectia Client 5.2.5 SSH Communications Security Tectia Client 4.4.12 SSH Communications Security Tectia Client 4.3.4-J
Code	Currently we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: content@securitydot.net.
TXT

Vulnerabilities - newest 10 RSS | More

2009-12-01 AWStats Multiple Unspecified Security Vulnerabilities
2009-12-01 TYPO3 simple Glossar Extension Unspecified Cross-Site Scripting and SQL-Injection Vulnerabilities
2009-12-01 TYPO3 Automatic Base Tags for RealUrl Extension Cache Spoofing Vulnerability
2009-12-01 TYPO3 TW Productfinder Extension Unspecified SQL Injection Vulnerability
2009-12-01 TYPO3 Trips Extension Unspecified SQL Injection Vulnerability
2009-12-01 TYPO3 [AN] Search it! Component Cross Site Scripting Vulnerability
2009-12-01 BlackBerry Attachment Service PDF Distiller Multiple Remote Code Execution Vulnerabilities
2009-12-01 CUPS File Descriptors Handling Remote Denial Of Service Vulnerability
2009-12-01 Multiple Vendor Clientless SSL VPN Products Same Origin Policy Bypass Vulnerability
2009-12-01 Asterisk RTP Comfort Noise Processing Remote Denial of Service Vulnerability