Title : OpenSSH Cipher-Block Chaining Mode Plaintext Recovery Vulnerability VUPEN ID : VUPEN/ADV-2008-3173 CVE ID : GENERIC-MAP-NOMATCH CWE ID : CWE-310
Rated as : Low Risk
Remotely Exploitable : Yes Locally Exploitable : Yes Release Date : 2008-11-18
Technical Description
A vulnerability has been identified in OpenSSH, which could be exploited by attackers to potentially gain knowledge of sensitive information. This issue is caused by an error when handling certain types of errors when using a block cipher algorithm in the cipher-block chaining (CBC) mode, which could allow an attacker to potentially recover up to 32 bits of plaintext from an arbitrary block of ciphertext from a SSH connection.
Credits Vulnerability reported by Martin Albrecht, Kenny Paterson and Gaven Watson (Information Security Group at Royal Holloway, University of London).
