CVE-2016-6210

CVSS v3.1

5.9

Medium

Vector

AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions OpenSSH versions prior to 7.3

Description The issue is related to a password hashing error in the ssh network protocol. When SHA256 or SHA512 are used for user password hashing, a timing difference in responses can be leveraged by remote attackers to enumerate users, especially when a large password is provided. This can potentially allow attackers to gain access to confidential data. Additionally, the lack of password length limits for password authentication can cause a denial of service due to excessive CPU consumption when a long string is used.

Recommendations For OpenSSH versions prior to 7.3, update to version 7.3 or later to resolve the issue. As a temporary workaround, consider restricting access to the ssh service to minimize the risk of exploitation. Avoid using excessively long passwords for authentication until the issue is resolved.

Exploit

Fix

DoS

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-200

Related Identifiers

ALSA-2024_1130

ALSA-2024_1150

ALSA-2025_16880

ALT-PU-2016-1200

ALT-PU-2016-2124

ALT-PU-2024-3921

ALT-PU-2024-4077

ALT-PU-2024-4467

ALT-PU-2024-9513

BDU:2016-02237

CESA-2017_2029

CESA-2017_2563

CVE-2016-6210

DLA-578-1

DSA-3626-1

ELSA-2017-2029

ELSA-2017-2563

ELSA-2023-4428

GETSSHLOGINENUMARATION

MGASA-2016-0280

OPENSUSE-SU-2024:10174-1

RHSA-2017:2029

RHSA-2017:2563

RHSA-2017_2029

RHSA-2017_2563

SUSE-SU-2016:2280-1

SUSE-SU-2016:2281-1

SUSE-SU-2016:2388-1

SUSE-SU-2016:2555-1

SUSE-SU-2016_2280-1

SUSE-SU-2016_2281-1

SUSE-SU-2016_2388-1

SUSE-SU-2016_2555-1

USN-3061-1

Affected Products

Alt Linux

Centos

Ibm Aix

Openssh

Red Hat

Suse

Ubuntu

CVE-2016-6210

Weakness Enumeration

Related Identifiers

Affected Products

References · 74