The resend_bytes function in roaming_common.c in the client in OpenSSH 5.x, 6.x, and 7.x before 7.1p2 allows remote servers to obtain sensitive information from process memory by requesting transmission of an entire buffer, as demonstrated by reading a private key.
oryginał ENCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:NApple Mac Os X
OSApple≤ 10.11.3HP Remote Device Access Virtual Customer Access System
APPHp≤ 15.07Openbsd OpenSSH
APPOpenbsd5.05.15.25.35.45.55.65.75.85.96.06.16.26.36.4+ 7 więcejOracle Linux
OSOracle7Oracle Solaris
OSOracle11.3Sophos Unified Threat Management
HWSophos110120220320425525625Sophos Unified Threat Management Software
APPSophos9.3189.353
Powiązane podatności
A logic issue was addressed with improved restrictions. This issue is fixed in macOS Big Sur 11.2, Security Up...
A logic issue was addressed with improved restrictions. This issue is fixed in macOS Big Sur 11.2, Security Up...
Vulnerability in the Oracle Solaris product of Oracle Systems (component: Pluggable authentication module). Su...
A remote code execution vulnerability exists in the WebAdmin of Sophos SG UTM before v9.705 MR5, v9.607 MR7, a...
Unspecified vulnerability in Adobe Flash Player 21.0.0.242 and earlier allows remote attackers to execute arbi...