CVE-2006-5052
published 2006-09-27CVE-2006-5052: Unspecified vulnerability in portable OpenSSH before 4.4, when running on some platforms, allows remote attackers to determine the validity of usernames via…
PriorityP427medium5CVSS 2.0
AVNACLAuNCPINAN
EPSS
2.80%
84.7th percentile
Unspecified vulnerability in portable OpenSSH before 4.4, when running on some platforms, allows remote attackers to determine the validity of usernames via unknown vectors involving a GSSAPI "authentication abort."
Affected
61 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | openssh | < openssh 1:4.6p1-1 (bookworm) | openssh 1:4.6p1-1 (bookworm) |
| openbsd | openssh | — | — |
| openbsd | openssh | — | — |
| openbsd | openssh | — | — |
| openbsd | openssh | — | — |
| openbsd | openssh | — | — |
| openbsd | openssh | — | — |
| openbsd | openssh | — | — |
| openbsd | openssh | — | — |
| openbsd | openssh | — | — |
| openbsd | openssh | — | — |
| openbsd | openssh | — | — |
| openbsd | openssh | — | — |
| openbsd | openssh | — | — |
| openbsd | openssh | — | — |
| openbsd | openssh | — | — |
| openbsd | openssh | — | — |
| openbsd | openssh | — | — |
| openbsd | openssh | — | — |
| openbsd | openssh | — | — |
| openbsd | openssh | — | — |
| openbsd | openssh | — | — |
| openbsd | openssh | — | — |
| openbsd | openssh | — | — |
| openbsd | openssh | — | — |
CVSS provenance
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:P/I:N/A:N
osv5.0MEDIUM
vendor_debian5.0LOW
vendor_redhat5.0MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
VulDB
OpenBSD OpenSSH up to 4.3 information disclosure (Nessus ID 67053 / ID 38560)
vuldb·2026-04-23·CVSS 5.0
CVE-2006-5052 [MEDIUM] OpenBSD OpenSSH up to 4.3 information disclosure (Nessus ID 67053 / ID 38560)
A vulnerability has been found in OpenBSD OpenSSH up to 4.3 and classified as problematic. The affected element is an unknown function. Performing a manipulation results in information disclosure.
This vulnerability is identified as CVE-2006-5052. The attack can be initiated remotely. There is not any exploit available.
The affected component should be upgraded.
GHSA
GHSA-mhjc-ghvw-2hvv: Unspecified vulnerability in portable OpenSSH before 4
ghsa_unreviewed·2022-05-01
CVE-2006-5052 [MEDIUM] GHSA-mhjc-ghvw-2hvv: Unspecified vulnerability in portable OpenSSH before 4
Unspecified vulnerability in portable OpenSSH before 4.4, when running on some platforms, allows remote attackers to determine the validity of usernames via unknown vectors involving a GSSAPI "authentication abort."
OSV
CVE-2006-5052: Unspecified vulnerability in portable OpenSSH before 4
osv·2006-09-27·CVSS 5.0
CVE-2006-5052 [MEDIUM] CVE-2006-5052: Unspecified vulnerability in portable OpenSSH before 4
Unspecified vulnerability in portable OpenSSH before 4.4, when running on some platforms, allows remote attackers to determine the validity of usernames via unknown vectors involving a GSSAPI "authentication abort."
Red Hat
Kerberos information leak
vendor_redhat·2006-09-28·CVSS 5.0
CVE-2006-5052 [MEDIUM] Kerberos information leak
Kerberos information leak
Unspecified vulnerability in portable OpenSSH before 4.4, when running on some platforms, allows remote attackers to determine the validity of usernames via unknown vectors involving a GSSAPI "authentication abort."
Statement: This issue did not affect Red Hat Enterprise Linux 2.1 and 3.
Debian
CVE-2006-5052: openssh - Unspecified vulnerability in portable OpenSSH before 4.4, when running on some p...
vendor_debian·2006·CVSS 5.0
CVE-2006-5052 [MEDIUM] CVE-2006-5052: openssh - Unspecified vulnerability in portable OpenSSH before 4.4, when running on some p...
Unspecified vulnerability in portable OpenSSH before 4.4, when running on some platforms, allows remote attackers to determine the validity of usernames via unknown vectors involving a GSSAPI "authentication abort."
Scope: local
bookworm: resolved (fixed in 1:4.6p1-1)
bullseye: resolved (fixed in 1:4.6p1-1)
forky: resolved (fixed in 1:4.6p1-1)
sid: resolved (fixed in 1:4.6p1-1)
trixie: resolved (fixed in 1:4.6p1-1)
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2006-5052 GSSAPI information leak
bugzilla·2007-03-30·CVSS 5.0
CVE-2006-5052 [MEDIUM] CVE-2006-5052 GSSAPI information leak
CVE-2006-5052 GSSAPI information leak
OpenSSH 4.4 was released and mentions:
* On portable OpenSSH, fix a GSSAPI authentication abort that
could be used to determine the validity of usernames on some
platforms.
Affects FC[56].
Discussion:
Created attachment 151319
Backport of a patch from 4.4.p1
---
openssh-4.3p2-19.fc6 has been pushed for fc6, which should resolve this issue. If these problems are still present in this version, then please make note of it in this bug report.
---
openssh-4.3p2-19.fc6 has been pushed for fc6, which should resolve this issue. If these problems are still present in this version, then please make note of it in this bug report.
Bugzilla
CVE-2006-5052 Kerberos information leak
bugzilla·2007-03-30·CVSS 5.0
CVE-2006-5052 [MEDIUM] CVE-2006-5052 Kerberos information leak
CVE-2006-5052 Kerberos information leak
From the openssh-4.3 changelog:
* Fix timing variance for valid vs. invalid accounts when attempting
Kerberos authentication (Bugzilla #975)
Discussion:
*** Bug 208349 has been marked as a duplicate of this bug. ***
---
This request was evaluated by Red Hat Product Management for inclusion in a Red
Hat Enterprise Linux maintenance release. Product Management has requested
further review of this request by Red Hat Engineering, for potential
inclusion in a Red Hat Enterprise Linux Update release for currently deployed
products. This request is not yet committed for inclusion in an Update
release.
---
An advisory has been issued which should help the problem
described in this bug report. This report is therefore being
closed with a resolution of
Bugzilla
CVE-2006-5052 GSSAPI information leak
bugzilla·2007-03-30·CVSS 5.0
CVE-2006-5052 [MEDIUM] CVE-2006-5052 GSSAPI information leak
CVE-2006-5052 GSSAPI information leak
OpenSSH 4.4 was released and mentions:
* On portable OpenSSH, fix a GSSAPI authentication abort that
could be used to determine the validity of usernames on some
platforms.
Discussion:
Created attachment 151314
Backport of a patch from 4.4.p1
---
This request was evaluated by Red Hat Product Management for inclusion in a Red
Hat Enterprise Linux maintenance release. Product Management has requested
further review of this request by Red Hat Engineering, for potential
inclusion in a Red Hat Enterprise Linux Update release for currently deployed
products. This request is not yet committed for inclusion in an Update
release.
---
Fixed in openssh-4.3p2-21.el5 in dist-5E-lspp.
---
An advisory has been issued which should help the problem
described
Bugzilla
CVE-2006-5052 GSSAPI information leak
bugzilla·2006-09-27·CVSS 5.0
CVE-2006-5052 [MEDIUM] CVE-2006-5052 GSSAPI information leak
CVE-2006-5052 GSSAPI information leak
OpenSSH 4.4 was released and mentions:
* On portable OpenSSH, fix a GSSAPI authentication abort that
could be used to determine the validity of usernames on some
platforms.
This could only affect RHEL4 as previous RHEL did not support GSSAPI
(We currently don't know if this would affect Linux)
Discussion:
openssh-3.9p1 is not vulnerable to this abort - but see #234643.
---
This flaw does affect RHEL5 is seems. I'm reopening this bug against RHEL5.
---
*** This bug has been marked as a duplicate of 234643 ***
http://docs.info.apple.com/article.html?artnum=305214http://lists.apple.com/archives/security-announce/2007/Mar/msg00002.htmlhttp://marc.info/?l=openssh-unix-dev&m=115939141729160&w=2http://openssh.org/txt/release-4.4http://rhn.redhat.com/errata/RHSA-2006-0697.htmlhttp://secunia.com/advisories/22158http://secunia.com/advisories/22173http://secunia.com/advisories/22495http://secunia.com/advisories/22823http://secunia.com/advisories/24479http://secunia.com/advisories/27588http://secunia.com/advisories/28320http://security.gentoo.org/glsa/glsa-200611-06.xmlhttp://securitytracker.com/id?1016939http://slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.592566http://support.avaya.com/elmodocs2/security/ASA-2007-527.htmhttp://www.novell.com/linux/security/advisories/2006_62_openssh.htmlhttp://www.osvdb.org/29266http://www.redhat.com/support/errata/RHSA-2007-0540.htmlhttp://www.redhat.com/support/errata/RHSA-2007-0703.htmlhttp://www.securityfocus.com/archive/1/447861/100/200/threadedhttp://www.securityfocus.com/bid/20245http://www.us-cert.gov/cas/techalerts/TA07-072A.htmlhttp://www.vupen.com/english/advisories/2007/0930https://exchange.xforce.ibmcloud.com/vulnerabilities/29255https://issues.rpath.com/browse/RPL-681https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10178http://docs.info.apple.com/article.html?artnum=305214http://lists.apple.com/archives/security-announce/2007/Mar/msg00002.htmlhttp://marc.info/?l=openssh-unix-dev&m=115939141729160&w=2http://openssh.org/txt/release-4.4http://rhn.redhat.com/errata/RHSA-2006-0697.htmlhttp://secunia.com/advisories/22158http://secunia.com/advisories/22173http://secunia.com/advisories/22495http://secunia.com/advisories/22823http://secunia.com/advisories/24479http://secunia.com/advisories/27588http://secunia.com/advisories/28320http://security.gentoo.org/glsa/glsa-200611-06.xmlhttp://securitytracker.com/id?1016939http://slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.592566http://support.avaya.com/elmodocs2/security/ASA-2007-527.htmhttp://www.novell.com/linux/security/advisories/2006_62_openssh.htmlhttp://www.osvdb.org/29266http://www.redhat.com/support/errata/RHSA-2007-0540.htmlhttp://www.redhat.com/support/errata/RHSA-2007-0703.htmlhttp://www.securityfocus.com/archive/1/447861/100/200/threadedhttp://www.securityfocus.com/bid/20245http://www.us-cert.gov/cas/techalerts/TA07-072A.htmlhttp://www.vupen.com/english/advisories/2007/0930https://exchange.xforce.ibmcloud.com/vulnerabilities/29255https://issues.rpath.com/browse/RPL-681https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10178
2006-09-27
Published