Free and open-source vulnerability scanner
Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.
Install NowAvailable for macOS, Windows, and Linux
CVE-2012-0814
CVE information
Published
Last Modified
CVSSv2.0 Severity
Impact Analysis
Description
The auth_parse_options function in auth-options.c in sshd in OpenSSH before 5.7 provides debug messages containing authorized_keys command options, which allows remote authenticated users to obtain potentially sensitive information by reading these messages, as demonstrated by the shared user account required by Gitolite. NOTE: this can cross privilege boundaries because a user account may intentionally have no shell or filesystem access, and therefore may have no supported way to read an authorized_keys file in its own home directory..
CVSSv2.0 Score
- Severity
- Low
- Base Score
- 3.5/10
- Exploit Score
- 6.8/10
- Access Vector
- Network
- Access Complexity
- Medium
- Authentication Required
- Single
- Impact Score
- 2.9/10
- Confidentiality Impact
- Partial
- Availability Impact
- None
- Integrity Impact
- None
Products Affected
CPE | Affected | Vulnerable | Excluding | Edit |
---|---|---|---|---|
cpe:2.3:a:openbsd:openssh:5.4:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:2:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:3.8:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:3.8.1p1:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:4.3p2:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:3.2.2:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:3.1:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:5.5:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:3.0.2p1:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:1.5.8:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:5.3:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:4.1:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:3.8.1:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:2.1.1:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:3.7.1p2:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:4.8:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:4.9:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:3.2.3p1:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:3.1p1:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:2.5.1:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:2.9.9p2:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:3.6.1p2:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:3.9:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:3.0:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:1.2.1:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:2.2:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:3.2:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:3.6:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:4.7:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:1.5.7:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:1.2.3:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:3.7:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:4.0p1:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:3.5p1:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:2.3.1:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:3.0.1p1:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:4.4:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:3.7.1p1:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:2.1:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:1.2:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:5.2:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:3.3:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:3.2.2p1:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:3.9.1p1:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:3.0.2:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:3.4p1:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:3.6.1p1:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:3.0.1:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:2.9.9:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:3.6.1:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:4.1p1:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:1.2.2:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:4.2p1:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:4.5:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:2.9p1:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:2.9:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:3.7.1:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:*:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:1.2.27:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:4.2:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:2.5.2:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:2.3:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:3.4:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:4.4p1:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:4.3p1:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:3.5:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:2.5:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:5.1:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:3.0p1:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:3.3p1:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:4.3:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:4.0:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:3.9.1:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:5.0:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:1.3:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:2.9p2:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:1.5:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:openbsd:openssh:4.6:*:*:*:*:*:*:* |
Yes
|
- | - |
References
- http://openwall.com/lists/oss-security/2012/01/27/4
- http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=657445
- http://www.openbsd.org/cgi-bin/cvsweb/src/usr.bin/ssh/auth-options.c
- http://openwall.com/lists/oss-security/2012/01/26/16
- http://openwall.com/lists/oss-security/2012/01/26/15
- http://openwall.com/lists/oss-security/2012/01/27/1
- http://osvdb.org/78706
- http://www.securityfocus.com/bid/51702
- http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10673
- https://exchange.xforce.ibmcloud.com/vulnerabilities/72756
- http://www.openbsd.org/cgi-bin/cvsweb/src/usr.bin/ssh/auth-options.c.diff?r1=1.53%3Br2=1