OpenSSH CVE-2019-6109 Man in the Middle Security Bypass Vulnerability
BID:106843
Info
OpenSSH CVE-2019-6109 Man in the Middle Security Bypass Vulnerability
| Bugtraq ID: | 106843 |
| Class: | Input Validation Error |
| CVE: |
CVE-2019-6109 |
| Remote: | Yes |
| Local: | No |
| Published: | Jan 11 2019 12:00AM |
| Updated: | Jan 11 2019 12:00AM |
| Credit: | Harry Sintonen, F-Secure Corporation |
| Vulnerable: |
SuSE Linux Enterprise Server 12-SP2 SuSE Linux Enterprise Server 12-SP1 SuSE Linux Enterprise Server 12 SP3 SuSE Linux Enterprise Server 12 GA SuSE Linux Enterprise Server 11 SP4 SuSE Linux Enterprise Server 11 SP3 LTSS Redhat Enterprise Linux 7 Redhat Enterprise Linux 6 Redhat Enterprise Linux 5 OpenSSH OpenSSH 7.9 F5 Traffix SDC 5.1 F5 Traffix SDC 5.0 F5 Traffix SDC 4.4 |
| Not Vulnerable: | |
Discussion
OpenSSH CVE-2019-6109 Man in the Middle Security Bypass Vulnerability
OpenSSH is prone to a security-bypass vulnerability.
Successfully exploiting this issue may allow attackers to bypass certain security restrictions and perform unauthorized actions by conducting a man-in-the-middle attack. This may lead to other attacks.
OpenSSH 7.9 version is vulnerable; other versions may also be affected.
OpenSSH is prone to a security-bypass vulnerability.
Successfully exploiting this issue may allow attackers to bypass certain security restrictions and perform unauthorized actions by conducting a man-in-the-middle attack. This may lead to other attacks.
OpenSSH 7.9 version is vulnerable; other versions may also be affected.