Search for vulnerabilities
Vulnerability details: VCID-bjdn-vaev-aaad
Vulnerability ID VCID-bjdn-vaev-aaad
Aliases CVE-2011-0539
Summary The key_certify function in usr.bin/ssh/key.c in OpenSSH 5.6 and 5.7, when generating legacy certificates using the -t command-line option in ssh-keygen, does not initialize the nonce field, which might allow remote attackers to obtain sensitive stack memory contents or make it easier to conduct hash collision attacks.
Status Published
Exploitability 0.5
Weighted Severity 4.5
Risk 2.2
Affected and Fixed Packages Package Details
Weaknesses (1)
CWE-264 Permissions, Privileges, and Access Controls
System Score Found at
epss 0.00701 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.00701 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.00701 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.00701 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.00701 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.00701 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.00701 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.00701 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.00701 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.00701 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.00701 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.00701 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.00701 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.00701 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.00701 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.01721 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.01721 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.01721 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.01721 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.01721 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.01721 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.01721 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.01721 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.01721 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.01721 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.01721 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.01721 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.01721 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.01721 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.01721 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.01721 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.01721 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.01721 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.01721 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.01721 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.01721 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.01721 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.01721 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.01721 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.01721 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.01721 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.01721 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.01721 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.01721 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.01721 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.01721 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.01721 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.01721 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.01721 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.01721 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.01721 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.01721 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.01721 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.01721 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.01721 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.01721 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.01721 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.01721 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.01721 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.01721 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.01721 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.01721 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.01721 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.01721 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.01721 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.01721 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.01721 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.01721 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.01721 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.01721 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.01721 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.01721 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.01721 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.01721 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.01721 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.01721 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.01721 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.01721 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.01721 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
epss 0.04012 https://api.first.org/data/v1/epss?cve=CVE-2011-0539
rhbs low https://bugzilla.redhat.com/show_bug.cgi?id=675254
cvssv2 5.0 https://nvd.nist.gov/vuln/detail/CVE-2011-0539
Reference id Reference type URL
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02794777
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10673
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-0539.json
https://api.first.org/data/v1/epss?cve=CVE-2011-0539
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0539
http://secunia.com/advisories/43181
http://secunia.com/advisories/44269
https://exchange.xforce.ibmcloud.com/vulnerabilities/65163
http://www.openssh.com/txt/legacy-cert.adv
http://www.openwall.com/lists/oss-security/2011/02/04/2
http://www.securityfocus.com/bid/46155
http://www.securitytracker.com/id?1025028
http://www.vupen.com/english/advisories/2011/0284
675254 https://bugzilla.redhat.com/show_bug.cgi?id=675254
cpe:2.3:a:openbsd:openssh:5.6:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openbsd:openssh:5.6:*:*:*:*:*:*:*
cpe:2.3:a:openbsd:openssh:5.7:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openbsd:openssh:5.7:*:*:*:*:*:*:*
CVE-2011-0539 https://nvd.nist.gov/vuln/detail/CVE-2011-0539
No exploits are available.
Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N Found at https://nvd.nist.gov/vuln/detail/CVE-2011-0539
Exploitability (E) Access Vector (AV) Access Complexity (AC) Authentication (Au) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

none

partial

complete

none

partial

complete

none

partial

complete
Exploit Prediction Scoring System (EPSS)
Percentile 0.80701
EPSS Score 0.00701
Published At Nov. 1, 2024, midnight
Date Actor Action Source VulnerableCode Version
There are no relevant records.