CVE-2014-0017

Published Mar 14, 2014

Last updated 11 years ago

Overview

Description: The RAND_bytes function in libssh before 0.6.3, when forking is enabled, does not properly reset the state of the OpenSSL pseudo-random number generator (PRNG), which causes the state to be shared between children processes and allows local users to obtain sensitive information by leveraging a pid collision.
Source: secalert@redhat.com
NVD status: Modified

Hype score: Not currently trending

Risk scores

CVSS 2.0

Type: Primary
Base score: 1.9
Impact score: 2.9
Exploitability score: 3.4
Vector string: AV:L/AC:M/Au:N/C:P/I:N/A:N

Weaknesses

nvd@nist.gov: CWE-310

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:libssh:libssh:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F92F6AA4-B893-4A3C-8D00-AE4A607CFF76",
            "versionEndIncluding": "0.6.2"
          },
          {
            "criteria": "cpe:2.3:a:libssh:libssh:0.4.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EA0F1552-63D8-4E97-A44A-EF55E8A330B7"
          },
          {
            "criteria": "cpe:2.3:a:libssh:libssh:0.4.8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6514D889-F87F-44D1-9C7B-5BE75676DCFF"
          },
          {
            "criteria": "cpe:2.3:a:libssh:libssh:0.5.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A80094C5-1273-43AB-9E1E-096D8B0A60BB"
          },
          {
            "criteria": "cpe:2.3:a:libssh:libssh:0.5.0:rc1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CF67514C-3240-42A4-9996-21E855104C59"
          },
          {
            "criteria": "cpe:2.3:a:libssh:libssh:0.5.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7BBD0BC3-2467-414E-BD82-2A5778B810F9"
          },
          {
            "criteria": "cpe:2.3:a:libssh:libssh:0.5.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3D611A20-8A47-43DE-A6EC-90977C227C64"
          },
          {
            "criteria": "cpe:2.3:a:libssh:libssh:0.5.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "28074A59-84B3-417F-B18A-5979F940A027"
          },
          {
            "criteria": "cpe:2.3:a:libssh:libssh:0.5.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4FDA1F32-B3D1-416B-BE64-8B80C99B9DB4"
          },
          {
            "criteria": "cpe:2.3:a:libssh:libssh:0.5.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D4721CE8-E74D-42CF-AB75-E6F73A6F75BB"
          },
          {
            "criteria": "cpe:2.3:a:libssh:libssh:0.6.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "26F92DD2-760B-4C4A-9AA8-384327B8699A"
          },
          {
            "criteria": "cpe:2.3:a:libssh:libssh:0.6.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "388BE929-54F4-4058-B869-9E1663825AD6"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Social media

Risk scores

CVSS 2.0

Weaknesses

Configurations

References