CVE-2016-0777

The resend_bytes function in roaming_common.c in the client in OpenSSH 5.x, 6.x, and 7.x before 7.1p2 allows remote servers to obtain sensitive information from process memory by requesting transmission of an entire buffer, as demonstrated by reading a private key.
Severity
MEDIUM
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Atk. Vector
NETWORK
Atk. Complexity
LOW
Priv. Required
LOW
Base Score
CVSS 3.x
EPSS Score
Percentile: Unknown
VendorProductVersion
sophosunified_threat_management_software
9.318
sophosunified_threat_management_software
9.353
oraclesolaris
11.3
openbsdopenssh
5.0
openbsdopenssh
5.0
openbsdopenssh
5.1
openbsdopenssh
5.1
openbsdopenssh
5.2
openbsdopenssh
5.2
openbsdopenssh
5.3
openbsdopenssh
5.3
openbsdopenssh
5.4
openbsdopenssh
5.4
openbsdopenssh
5.5
openbsdopenssh
5.5
openbsdopenssh
5.6
openbsdopenssh
5.6
openbsdopenssh
5.7
openbsdopenssh
5.7
openbsdopenssh
5.8
openbsdopenssh
5.8
openbsdopenssh
5.9
openbsdopenssh
5.9
openbsdopenssh
6.0
openbsdopenssh
6.0
openbsdopenssh
6.1
openbsdopenssh
6.1
openbsdopenssh
6.2
openbsdopenssh
6.2
openbsdopenssh
6.2
openbsdopenssh
6.3
openbsdopenssh
6.3
openbsdopenssh
6.4
openbsdopenssh
6.4
openbsdopenssh
6.5
openbsdopenssh
6.5
openbsdopenssh
6.6
openbsdopenssh
6.6
openbsdopenssh
6.7
openbsdopenssh
6.7
openbsdopenssh
6.8
openbsdopenssh
6.8
openbsdopenssh
6.9
openbsdopenssh
6.9
openbsdopenssh
7.0
openbsdopenssh
7.0
openbsdopenssh
7.1
openbsdopenssh
7.1
hpremote_device_access_virtual_customer_access_system
𝑥
≤ 15.07
applemac_os_x
𝑥
≤ 10.11.3
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
openssh
bullseye (security)
1:8.4p1-5+deb11u3
fixed
bullseye
1:8.4p1-5+deb11u3
fixed
bookworm
1:9.2p1-2+deb12u3
fixed
bookworm (security)
1:9.2p1-2+deb12u3
fixed
sid
1:9.9p1-3
fixed
trixie
1:9.9p1-3
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
openssh
wily
Fixed 1:6.9p1-2ubuntu0.1
released
vivid
Fixed 1:6.7p1-5ubuntu1.4
released
trusty
Fixed 1:6.6p1-2ubuntu2.4
released
precise
Fixed 1:5.9p1-5ubuntu1.8
released
References