CVE-2012-5975
Published Dec 4, 2012
Last updated 12 years ago
Overview
- Description
- The SSH USERAUTH CHANGE REQUEST feature in SSH Tectia Server 6.0.4 through 6.0.20, 6.1.0 through 6.1.12, 6.2.0 through 6.2.5, and 6.3.0 through 6.3.2 on UNIX and Linux, when old-style password authentication is enabled, allows remote attackers to bypass authentication via a crafted session involving entry of blank passwords, as demonstrated by a root login session from a modified OpenSSH client with an added input_userauth_passwd_changereq call in sshconnect2.c.
- Source
- cve@mitre.org
- NVD status
- Analyzed
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 9.3
- Impact score
- 10
- Exploitability score
- 8.6
- Vector string
- AV:N/AC:M/Au:N/C:C/I:C/A:C
Weaknesses
- nvd@nist.gov
- CWE-287
Social media
- Hype score
- Not currently trending
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:ssh:tectia_server:6.0.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "DB98ADBD-7FBB-4495-A71B-8EF9A6EAC33B"
},
{
"criteria": "cpe:2.3:a:ssh:tectia_server:6.0.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A610861C-E99E-461C-9DD4-22C9BB7E219C"
},
{
"criteria": "cpe:2.3:a:ssh:tectia_server:6.0.6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "773953BC-6509-4206-93F9-81ECE5990723"
},
{
"criteria": "cpe:2.3:a:ssh:tectia_server:6.0.7:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "00C4BCD3-9323-4C54-9610-2A68EB054E33"
},
{
"criteria": "cpe:2.3:a:ssh:tectia_server:6.0.8:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "108C7BFB-2482-40C6-BC4B-3746796A750F"
},
{
"criteria": "cpe:2.3:a:ssh:tectia_server:6.0.9:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5E11B76A-2E1A-42C8-8B0F-115FC90E3A58"
},
{
"criteria": "cpe:2.3:a:ssh:tectia_server:6.0.10:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2281860D-6801-4858-A2EF-C3691905456F"
},
{
"criteria": "cpe:2.3:a:ssh:tectia_server:6.0.11:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "42801462-CD60-4FEA-A199-2AF807DA2970"
},
{
"criteria": "cpe:2.3:a:ssh:tectia_server:6.0.12:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CFAC9A2F-0D00-4869-A86F-9375B2A2B49F"
},
{
"criteria": "cpe:2.3:a:ssh:tectia_server:6.0.13:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C81A0737-CA31-48DB-9A61-3B22014D1C99"
},
{
"criteria": "cpe:2.3:a:ssh:tectia_server:6.0.14:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B65A2C5C-8B1F-4C47-9D0C-0AB8B8EA2AC1"
},
{
"criteria": "cpe:2.3:a:ssh:tectia_server:6.0.17:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CC7C282A-D585-4D7C-9879-9CB952F18271"
},
{
"criteria": "cpe:2.3:a:ssh:tectia_server:6.0.18:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3FA14E65-1271-436D-8FCF-58A31AF8AE31"
},
{
"criteria": "cpe:2.3:a:ssh:tectia_server:6.0.19:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2802C37C-39B3-4EC7-B268-C922CADE23CE"
},
{
"criteria": "cpe:2.3:a:ssh:tectia_server:6.0.20.:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0FA77C94-46B3-40D1-A25D-F22ACE14B1B4"
},
{
"criteria": "cpe:2.3:a:ssh:tectia_server:6.1.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3013570A-EEBA-4F29-949C-4AF9CC891997"
},
{
"criteria": "cpe:2.3:a:ssh:tectia_server:6.1.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3F83F52D-02C8-4882-A109-3123B5A4AF83"
},
{
"criteria": "cpe:2.3:a:ssh:tectia_server:6.1.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F1F037ED-158F-4775-BBDC-5FC2890D4200"
},
{
"criteria": "cpe:2.3:a:ssh:tectia_server:6.1.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0E27B394-FF7F-4F9F-8882-94EB73183CB6"
},
{
"criteria": "cpe:2.3:a:ssh:tectia_server:6.1.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E08A8238-AE4F-4B6E-9894-F0536D31C09F"
},
{
"criteria": "cpe:2.3:a:ssh:tectia_server:6.1.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6E3CE1F0-ADB8-42E6-AF1F-5D4EB9E13768"
},
{
"criteria": "cpe:2.3:a:ssh:tectia_server:6.1.6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "270325E5-04BB-43B5-AF56-EFA0C2797179"
},
{
"criteria": "cpe:2.3:a:ssh:tectia_server:6.1.7:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3499DC6A-1FA5-442E-9A4F-84DC44806BEA"
},
{
"criteria": "cpe:2.3:a:ssh:tectia_server:6.1.8:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "48699828-47BD-4A87-B98C-4424DD4946B4"
},
{
"criteria": "cpe:2.3:a:ssh:tectia_server:6.1.9:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "966CB478-D7FD-4565-A528-D0E7690BADEF"
},
{
"criteria": "cpe:2.3:a:ssh:tectia_server:6.1.12:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "321FAB7F-C072-4662-B6E9-43C6C38B0CC8"
},
{
"criteria": "cpe:2.3:a:ssh:tectia_server:6.2.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "ACDFC77D-A5FE-4D9E-9EB9-961227227B54"
},
{
"criteria": "cpe:2.3:a:ssh:tectia_server:6.2.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A7E63E80-645C-435A-A5F6-24C49AA33050"
},
{
"criteria": "cpe:2.3:a:ssh:tectia_server:6.2.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B9D3547A-9F13-4BAD-B07B-77231BFD1C88"
},
{
"criteria": "cpe:2.3:a:ssh:tectia_server:6.2.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "ED945745-3C99-4471-B5B9-98A2D3816E9E"
},
{
"criteria": "cpe:2.3:a:ssh:tectia_server:6.2.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "246E9AC7-10AC-4FB2-B084-225A3A8127E9"
},
{
"criteria": "cpe:2.3:a:ssh:tectia_server:6.2.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "908376D1-27E1-4442-A81A-D270C8474072"
},
{
"criteria": "cpe:2.3:a:ssh:tectia_server:6.3.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2EDF6B13-118D-4282-851B-C278522F35E3"
},
{
"criteria": "cpe:2.3:a:ssh:tectia_server:6.3.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "056BA569-291B-4F48-BA05-4BA88A7DC741"
},
{
"criteria": "cpe:2.3:a:ssh:tectia_server:6.3.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B5C53B37-E60A-4D52-B38A-B8A8710A8ED0"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "155AD4FB-E527-4103-BCEF-801B653DEA37"
}
],
"operator": "OR"
}
],
"operator": "AND"
}
]