CVE-2016-6210

Опубликовано: 14 июл. 2016

Источник: redhat

CVSS3: 5.3

CVSS2: 5

EPSS Критический

Описание

sshd in OpenSSH before 7.3, when SHA256 or SHA512 are used for user password hashing, uses BLOWFISH hashing on a static password when the username does not exist, which allows remote attackers to enumerate users by leveraging the timing difference between responses when a large password is provided.

A covert timing channel flaw was found in the way OpenSSH handled authentication of non-existent users. A remote unauthenticated attacker could possibly use this flaw to determine valid user names by measuring the timing of server responses.

Отчет

This issue in OpenSSH is mitigated by the usage of SELinux in Red Hat Enterprise Linux 6 and Red Hat Enterprise Linux 7.

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Enterprise Linux 5	openssh	Will not fix
Red Hat Enterprise Linux 6	openssh	Fixed	RHSA-2017:2563	31.08.2017
Red Hat Enterprise Linux 7	openssh	Fixed	RHSA-2017:2029	01.08.2017

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-385

https://bugzilla.redhat.com/show_bug.cgi?id=1357442openssh: User enumeration via covert timing channel

EPSS

Процентиль: 100%

0.92487

Критический

5.3 Medium

CVSS3

5 Medium

CVSS2

Связанные уязвимости

CVE-2016-6210

CVSS3: 5.9

ubuntu

больше 8 лет назад

CVE-2016-6210

CVSS3: 5.9

nvd

больше 8 лет назад

CVE-2016-6210

CVSS3: 5.9

debian

больше 8 лет назад

sshd in OpenSSH before 7.3, when SHA256 or SHA512 are used for user pa ...

GHSA-f525-65h3-3qjh

CVSS3: 5.9

github

около 3 лет назад

ELSA-2017-2563

oracle-oval

почти 8 лет назад

ELSA-2017-2563: openssh security update (MODERATE)

EPSS

Процентиль: 100%

0.92487

Критический

5.3 Medium

CVSS3

5 Medium

CVSS2