Lucene search
F5F5:K15493HistoryAug 07, 2014 - 12:00 a.m.
K15493 : OpenSSH vulnerability CVE-2006-5229
2014-08-0700:00:00
my.f5.com
18
Security Advisory Description
OpenSSH portable 4.1 on SUSE Linux, and possibly other platforms and versions, and possibly under limited configurations, allows remote attackers to determine valid usernames via timing discrepancies in which responses take longer for valid usernames than invalid ones, as demonstrated by sshtime. NOTE: as of 20061014, it appears that this issue is dependent on the use of manually-set passwords that causes delays when processing /etc/shadow due to an increased number of rounds. (CVE-2006-5229)
Impact
None. F5 products are not affected by this vulnerability.
Related
redhatcve
redhatcve
CVE-2006-5229
2015-10-30 10:28:47
ubuntucve
ubuntucve
CVE-2006-5229
2006-10-10 00:00:00
cve
cve
CVE-2006-5229
2006-10-10 23:07:00
cvelist
cvelist
CVE-2006-5229
2006-10-10 23:00:00
f5
f5
SOL15493 - OpenSSH vulnerability CVE-2006-5229
2014-08-07 00:00:00
nvd
nvd
CVE-2006-5229
2006-10-10 23:07:00
exploitdb
exploitdb
Portable OpenSSH 3.6.1p-PAM/4.1-SuSE - Timing Attack
2007-02-13 00:00:00
zdt
zdt
Portable OpenSSH <= 3.6.1p-PAM / 4.1-SUSE Timing Attack Exploit
2007-02-13 00:00:00
seebug
seebug
Portable OpenSSH <= 3.6.1p-PAM / 4.1-SUSE Timing Attack Exploit
2014-07-01 00:00:00
Portable OpenSSH <= 3.6.1p-PAM / 4.1-SUSE Timing Attack Exploit
2007-02-14 00:00:00
Portable OpenSSH <= 3.6.1p-PAM / 4.1-SUSE Timing Attack Exploit
2007-02-13 00:00:00
packetstorm
packetstorm
openssh-timing.txt
2007-02-14 00:00:00
SSH Username Enumeration
2024-09-01 00:00:00
exploitpack
exploitpack
Portable OpenSSH 3.6.1p-PAM4.1-SuSE - Timing Attack
2007-02-13 00:00:00
checkpoint_advisories
checkpoint_advisories
metasploit
metasploit
SSH Username Enumeration
2014-11-11 20:59:41
nessus
nessus
OpenSSH < 4.4 Multiple Vulnerabilities
2006-09-28 00:00:00
SunSSH < 1.1.1 / 1.3 CBC Plaintext Disclosure
2011-08-29 00:00:00