PT-2016-2810 · Openssh+6 · Openssh+6

Eddie Ezra Harari

·

Publicado

2016-03-09

·

Atualizado

2026-03-10

·

CVE-2016-6210

CVSS v3.1

5.9

Média

VetorAV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
Name of the Vulnerable Software and Affected Versions OpenSSH versions prior to 7.3
Description The issue is related to a password hashing error in the ssh network protocol. When SHA256 or SHA512 are used for user password hashing, a timing difference in responses can be leveraged by remote attackers to enumerate users, especially when a large password is provided. This can potentially allow attackers to gain access to confidential data. Additionally, the lack of password length limits for password authentication can cause a denial of service due to excessive CPU consumption when a long string is used.
Recommendations For OpenSSH versions prior to 7.3, update to version 7.3 or later to resolve the issue. As a temporary workaround, consider restricting access to the ssh service to minimize the risk of exploitation. Avoid using excessively long passwords for authentication until the issue is resolved.

Exploit

Correção

DoS

Information Disclosure

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-200

Identificadores relacionados

ALSA-2024_1130
ALSA-2024_1150
ALSA-2025_16880
ALT-PU-2016-1200
ALT-PU-2016-2124
ALT-PU-2024-3921
ALT-PU-2024-4077
ALT-PU-2024-4467
ALT-PU-2024-9513
BDU:2016-02237
CESA-2017_2029
CESA-2017_2563
CVE-2016-6210
DLA-578-1
DSA-3626-1
ELSA-2017-2029
ELSA-2017-2563
ELSA-2023-4428
GETSSHLOGINENUMARATION
MGASA-2016-0280
OPENSUSE-SU-2024:10174-1
RHSA-2017:2029
RHSA-2017:2563
RHSA-2017_2029
RHSA-2017_2563
SUSE-SU-2016:2280-1
SUSE-SU-2016:2281-1
SUSE-SU-2016:2388-1
SUSE-SU-2016:2555-1
SUSE-SU-2016_2280-1
SUSE-SU-2016_2281-1
SUSE-SU-2016_2388-1
SUSE-SU-2016_2555-1
USN-3061-1

Produtos afetados

Alt Linux
Centos
Ibm Aix
Openssh
Red Hat
Suse
Ubuntu