Title: OpenSSH CBC Mode Information Disclosure Vulnerability
Severity: HIGH
Description:
OpenSSH (OpenBSD Secure Shell) is software that provides encrypted communications via the SSH protocol.
OpenSSH is prone to an information-disclosure vulnerability that arises because of an error in the implementation of the block cipher algorithm in CBC (Cipher-Block Chaining) mode.
Successful exploits will allow attackers to obtain four bytes of plaintext of an encrypted session from an arbitrary attacker-selected block of ciphertext. This attack will terminate the active SSH session. The probability of success of this attack is extremely low because 1356 attempts are required to leak a very little amount of information. To obtain a signification portion of plaintext, an attacker would have to spend literally days on the attack.
Versions prior to OpenSSH 5.2 are vulnerable. Various versions of SSH Tectia are also affected.
Affected Products:
- Attachmate EXTRA! X-treme 8.0
- Attachmate EXTRA! X-treme 9.0
- Attachmate F-Secure SSH Client for UNIX 5.0
- Attachmate F-Secure SSH Server for UNIX 5.0
- Attachmate F-Secure SSH Server for Windows 5.0
- Attachmate INFOConnect 7.5
- Attachmate KEA! X 6.0
- Attachmate Reflection FTP Client 10
- Attachmate Reflection FTP Client 12.0
- Attachmate Reflection FTP Client 14.0.5
- Attachmate Reflection Standard Suite 2008
- Attachmate Reflection Suite for X 10
- Attachmate Reflection Suite for X 14.0.5
- Attachmate Reflection X 10
- Attachmate Reflection X 14.0.5
- Attachmate Reflection X 2008
- Attachmate Reflection for HP 10
- Attachmate Reflection for HP 14.0.5
- Attachmate Reflection for IBM 10
- Attachmate Reflection for IBM 14
- Attachmate Reflection for IBM 14.0.5
- Attachmate Reflection for IBM 2007
- Attachmate Reflection for IBM 2008
- Attachmate Reflection for Secure IT UNIX Client 6.0
- Attachmate Reflection for Secure IT UNIX Client 7.0 SP1
- Attachmate Reflection for Secure IT UNIX Server 6.0
- Attachmate Reflection for Secure IT UNIX Server 7.0 SP1
- Attachmate Reflection for Secure IT Windows Client 6.0
- Attachmate Reflection for Secure IT Windows Client 7.0 SP1
- Attachmate Reflection for Secure IT Windows Server 6.0
- Attachmate Reflection for Secure IT Windows Server 7.0 SP1
- Attachmate Reflection for UNIX and OpenVMS 10
- Attachmate Reflection for UNIX and OpenVMS 14.0.5
- Attachmate Reflection for UNIX and OpenVMS 2008
- Attachmate Reflection for the Web 2008
- Attachmate Reflection for the Web 6.0
- Attachmate Reflection for the Web 9.6
- Attachmate myEXTRA! Enterprise 7.1a
- Avaya CMS Server 13.0.0
- Avaya CMS Server 13.1
- Avaya CMS Server 14.0
- Avaya CMS Server 14.1
- Avaya Interactive Response 2.0
- Avaya Interactive Response 3.0
- HP Insight Control for Linux (ICE-LX) 2.10
- NetBSD NetBSD 4.0
- NetBSD NetBSD 4.0.1
- NetBSD NetBSD 5.0
- OpenSSH OpenSSH 4.0.0
- OpenSSH OpenSSH 4.0.0 p1
- OpenSSH OpenSSH 4.1.0
- OpenSSH OpenSSH 4.1.0 p1
- OpenSSH OpenSSH 4.2.0
- OpenSSH OpenSSH 4.2p1
- OpenSSH OpenSSH 4.3p1
- OpenSSH OpenSSH 4.3p2
- OpenSSH OpenSSH 4.4
- OpenSSH OpenSSH 4.4.p1
- OpenSSH OpenSSH 4.5
- OpenSSH OpenSSH 4.6
- OpenSSH OpenSSH 4.6p1
- OpenSSH OpenSSH 4.7
- OpenSSH OpenSSH 4.7p1
- OpenSSH OpenSSH 4.8
- OpenSSH OpenSSH 4.9
- OpenSSH OpenSSH 5.0
- OpenSSH OpenSSH 5.1
- RedHat Enterprise Linux 5 server
- RedHat Enterprise Linux Desktop 5 client
- SSH Communications Security Tectia Client 4.3.1 J
- SSH Communications Security Tectia Client 4.3.10-K
- SSH Communications Security Tectia Client 4.3.2 J
- SSH Communications Security Tectia Client 4.3.3-J
- SSH Communications Security Tectia Client 4.3.8 K
- SSH Communications Security Tectia Client 4.3.9 k
- SSH Communications Security Tectia Client 4.4.0
- SSH Communications Security Tectia Client 4.4.1
- SSH Communications Security Tectia Client 4.4.11
- SSH Communications Security Tectia Client 4.4.2
- SSH Communications Security Tectia Client 4.4.3
- SSH Communications Security Tectia Client 4.4.4
- SSH Communications Security Tectia Client 4.4.5
- SSH Communications Security Tectia Client 4.4.6
- SSH Communications Security Tectia Client 5.2.4
- SSH Communications Security Tectia Client 5.3.8
- SSH Communications Security Tectia Client 6.0.4
- SSH Communications Security Tectia ConnectSecure 6.0.4
- SSH Communications Security Tectia Connector 4.4.11
- SSH Communications Security Tectia Connector 5.2.4
- SSH Communications Security Tectia Connector 5.3.8
- SSH Communications Security Tectia Server 4.4.0
- SSH Communications Security Tectia Server 4.4.11
- SSH Communications Security Tectia Server 4.4.2
- SSH Communications Security Tectia Server 4.4.3
- SSH Communications Security Tectia Server 4.4.4
- SSH Communications Security Tectia Server 4.4.5
- SSH Communications Security Tectia Server 4.4.6
- SSH Communications Security Tectia Server 5.2.4
- SSH Communications Security Tectia Server 5.3.8
- SSH Communications Security Tectia Server 6.0.4
- SSH Communications Security Tectia Server for IBM z/OS 5.5.1
- SSH Communications Security Tectia Server for IBM z/OS 5.5.1
- SSH Communications Security Tectia Server for IBM z/OS 6.0.0
- SSH Communications Security Tectia Server for IBM z/OS 6.0.1
- SSH Communications Security Tectia Server for Linux on IBM System z 6.0.4
- Sun OpenSolaris build snv_01
- Sun OpenSolaris build snv_02
- Sun OpenSolaris build snv_100
- Sun OpenSolaris build snv_102
- Sun OpenSolaris build snv_103
- Sun OpenSolaris build snv_104
- Sun OpenSolaris build snv_13
- Sun OpenSolaris build snv_19
- Sun OpenSolaris build snv_22
- Sun OpenSolaris build snv_36
- Sun OpenSolaris build snv_39
- Sun OpenSolaris build snv_50
- Sun OpenSolaris build snv_57
- Sun OpenSolaris build snv_59
- Sun OpenSolaris build snv_64
- Sun OpenSolaris build snv_67
- Sun OpenSolaris build snv_68
- Sun OpenSolaris build snv_80
- Sun OpenSolaris build snv_85
- Sun OpenSolaris build snv_87
- Sun OpenSolaris build snv_88
- Sun OpenSolaris build snv_89
- Sun OpenSolaris build snv_90
- Sun OpenSolaris build snv_91
- Sun OpenSolaris build snv_92
- Sun OpenSolaris build snv_95
- Sun OpenSolaris build snv_96
- Sun Solaris 10
- Sun Solaris 10.0
- Sun Solaris 10.0_x86
- Sun Solaris 10_sparc
- Sun Solaris 10_x86
- Sun Solaris 9
- Sun Solaris 9_sparc
- Sun Solaris 9_x86
- Van Dyke Technologies SecureCRT 2.4.0
- Van Dyke Technologies SecureCRT 3.0.0
- Van Dyke Technologies SecureCRT 3.1.0
- Van Dyke Technologies SecureCRT 3.1.1
- Van Dyke Technologies SecureCRT 3.1.2
- Van Dyke Technologies SecureCRT 3.2.0
- Van Dyke Technologies SecureCRT 3.2.1
- Van Dyke Technologies SecureCRT 3.2.2
- Van Dyke Technologies SecureCRT 3.3.0
- Van Dyke Technologies SecureCRT 3.3.1
- Van Dyke Technologies SecureCRT 3.3.2
- Van Dyke Technologies SecureCRT 3.3.3
- Van Dyke Technologies SecureCRT 3.3.4
- Van Dyke Technologies SecureCRT 3.4.0
- Van Dyke Technologies SecureCRT 3.4.1
- Van Dyke Technologies SecureCRT 3.4.2
- Van Dyke Technologies SecureCRT 3.4.3
- Van Dyke Technologies SecureCRT 3.4.4
- Van Dyke Technologies SecureCRT 3.4.5
- Van Dyke Technologies SecureCRT 3.4.6
- Van Dyke Technologies SecureCRT 3.4.7
- Van Dyke Technologies SecureCRT 3.4.8
- Van Dyke Technologies SecureCRT 4.0.0 beta 1
- Van Dyke Technologies SecureCRT 4.0.0 beta 2
- Van Dyke Technologies SecureCRT 4.0.0 beta 3
- Van Dyke Technologies SecureCRT 4.0.1
- Van Dyke Technologies SecureCRT 4.0.2
- Van Dyke Technologies SecureCRT 4.0.3
- Van Dyke Technologies SecureCRT 4.0.4
- Van Dyke Technologies SecureCRT 4.0.5
- Van Dyke Technologies SecureCRT 4.1.0
- Van Dyke Technologies SecureCRT 4.1.1
- Van Dyke Technologies SecureCRT 4.1.2
- Van Dyke Technologies SecureCRT 4.1.3
- Van Dyke Technologies SecureCRT 4.1.4
- Van Dyke Technologies SecureCRT 4.1.5
- Van Dyke Technologies SecureCRT 4.1.6
- Van Dyke Technologies SecureCRT 4.1.7
- Van Dyke Technologies SecureCRT 4.1.8
- Van Dyke Technologies SecureCRT 4.1.9
- Van Dyke Technologies SecureCRT 5.0.4
- Van Dyke Technologies SecureCRT 5.0.5
- Van Dyke Technologies SecureCRT 5.2.2
- Van Dyke Technologies SecureCRT 6.1.2
- Van Dyke Technologies SecureFX 2.0.4
- Van Dyke Technologies SecureFX 2.0.5
- Van Dyke Technologies SecureFX 2.1.1
- Van Dyke Technologies SecureFX 2.1.2
- Van Dyke Technologies SecureFX 2.1.3
- Van Dyke Technologies SecureFX 3.0.4
- Van Dyke Technologies SecureFX 3.0.5
- Van Dyke Technologies SecureFX 4.0.2
- Van Dyke Technologies SecureFX 6.1.2
- Van Dyke Technologies VShell 1.0.0
- Van Dyke Technologies VShell 1.0.1
- Van Dyke Technologies VShell 1.0.2
- Van Dyke Technologies VShell 1.2.0
- Van Dyke Technologies VShell 3.0
- Van Dyke Technologies VShell 3.5.1
- Van Dyke Technologies VanDyke ClientPack 6.1.2
- Yamaha RT107e
- Yamaha RT58i
- Yamaha RTX1100
- Yamaha RTX1500
- Yamaha RTX3000
- Yamaha SRT100
References:
- Attachmate: Attachmate Security Update for CSIRTUK Vulnerability #CPNI-957: Plaintext Recove
- Avaya: ASA-2008-503 - A Security Vulnerability in Solaris Secure Shell (SSH) May Expose
- CPNI: InfoSec vulnerability disclosures Vulnerability in SSH
- HP: HP Insight Control suite for Linux Homepage
- OpenSSH: OpenSSH 5.2
- OpenSSH: OpenSSH Homepage
- OpenSSH: OpenSSH Security Advisory: cbc.adv
- SSH Communications: SSH Communications Homepage
- SSH Communications Security: Plaintext Recovery Attack Against SSH
- Sun: Solution 247186 : A Security Vulnerability in Solaris Secure Shell (SSH) May
- US-CERT: Vulnerability Note VU#958563 SSH CBC vulnerability
- Van Dyke: CPNI-957037 VanDyke Security Advisory
- Yamaha: RT Series Security FAQ
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
