OpenSSH CBC Mode Information Disclosure Vulnerability

OpenSSH is prone to an information-disclosure vulnerability.

Successful exploits will allow attackers to obtain four bytes of plaintext from an encrypted session.

Versions prior to OpenSSH 5.2 are vulnerable. Various versions of SSH Tectia are also affected.


 

Privacy Statement
Copyright 2010, SecurityFocus