CVE-2008-2285
published 2008-05-18CVE-2008-2285: The ssh-vulnkey tool on Ubuntu Linux 7.04, 7.10, and 8.04 LTS does not recognize authorized_keys lines that contain options, which makes it easier for remote…
PriorityP421medium5CVSS 2.0
AVNACLAuNCPINAN
EPSS
1.69%
74.2th percentile
The ssh-vulnkey tool on Ubuntu Linux 7.04, 7.10, and 8.04 LTS does not recognize authorized_keys lines that contain options, which makes it easier for remote attackers to exploit CVE-2008-0166 by guessing a key that was not identified by this tool.
Affected
8 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | openssh | < openssh 1:4.7p1-10 (bookworm) | openssh 1:4.7p1-10 (bookworm) |
| openbsd | openssh | >= 0 < 1:4.7p1-10 | 1:4.7p1-10 |
| openbsd | openssh | >= 0 < 1:4.7p1-10 | 1:4.7p1-10 |
| openbsd | openssh | >= 0 < 1:4.7p1-10 | 1:4.7p1-10 |
| openbsd | openssh | >= 0 < 1:4.7p1-10 | 1:4.7p1-10 |
| ubuntu | linux | — | — |
| ubuntu | linux | — | — |
| ubuntu | linux | — | — |
CVSS provenance
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:P/I:N/A:N
osv7.5HIGH
vendor_debian7.5HIGH
vendor_redhat6.8MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-9c93-c5gr-q8j9: The ssh-vulnkey tool on Ubuntu Linux 7
ghsa_unreviewed·2022-05-01·CVSS 7.5
CVE-2008-2285 [HIGH] GHSA-9c93-c5gr-q8j9: The ssh-vulnkey tool on Ubuntu Linux 7
The ssh-vulnkey tool on Ubuntu Linux 7.04, 7.10, and 8.04 LTS does not recognize authorized_keys lines that contain options, which makes it easier for remote attackers to exploit CVE-2008-0166 by guessing a key that was not identified by this tool.
OSV
CVE-2008-2285: The ssh-vulnkey tool on Ubuntu Linux 7
osv·2008-05-18·CVSS 7.5
CVE-2008-2285 [HIGH] CVE-2008-2285: The ssh-vulnkey tool on Ubuntu Linux 7
The ssh-vulnkey tool on Ubuntu Linux 7.04, 7.10, and 8.04 LTS does not recognize authorized_keys lines that contain options, which makes it easier for remote attackers to exploit CVE-2008-0166 by guessing a key that was not identified by this tool.
Red Hat
libtiff: LZWDecodeCompat underflow
vendor_redhat·2009-01-03·CVSS 6.8
CVE-2009-2285 [MEDIUM] libtiff: LZWDecodeCompat underflow
libtiff: LZWDecodeCompat underflow
Buffer underflow in the LZWDecodeCompat function in libtiff 3.8.2 allows context-dependent attackers to cause a denial of service (crash) via a crafted TIFF image, a different vulnerability than CVE-2008-2327.
Ubuntu
OpenSSH update
vendor_ubuntu·2008-05-14
CVE-2008-2285 OpenSSH update
Title: OpenSSH update
Summary: OpenSSH update
Matt Zimmerman discovered that entries in ~/.ssh/authorized_keys
with options (such as "no-port-forwarding" or forced commands) were
ignored by the new ssh-vulnkey tool introduced in OpenSSH (see
USN-612-2). This could cause some compromised keys not to be
listed in ssh-vulnkey's output.
This update also adds more information to ssh-vulnkey's manual page.
Original advisory details:
A weakness has been discovered in the random number generator used
by OpenSSL on Debian and Ubuntu systems. As a result of this
weakness, certain encryption keys are much more common than they
should be, such that an attacker could guess the key through a
brute-force attack given minimal knowledge of the system. This
particularly affects the use of encryption ke
Debian
CVE-2008-2285: openssh - The ssh-vulnkey tool on Ubuntu Linux 7.04, 7.10, and 8.04 LTS does not recognize...
vendor_debian·2008·CVSS 7.5
CVE-2008-2285 [HIGH] CVE-2008-2285: openssh - The ssh-vulnkey tool on Ubuntu Linux 7.04, 7.10, and 8.04 LTS does not recognize...
The ssh-vulnkey tool on Ubuntu Linux 7.04, 7.10, and 8.04 LTS does not recognize authorized_keys lines that contain options, which makes it easier for remote attackers to exploit CVE-2008-0166 by guessing a key that was not identified by this tool.
Scope: local
bookworm: resolved (fixed in 1:4.7p1-10)
bullseye: resolved (fixed in 1:4.7p1-10)
forky: resolved (fixed in 1:4.7p1-10)
sid: resolved (fixed in 1:4.7p1-10)
trixie: resolved (fixed in 1:4.7p1-10)
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2008-05-18
Published