Exploit for #VU70395 Information Exposure Through Timing Discrepancy in OpenSSH
Vulnerability identifier: #VU70395
Vulnerability risk: Medium
CVSSv3.1: 4.8 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N/E:P/RL:O/RC:C]
CVE-ID:
CWE-ID:
CWE-208
Exploitation vector: Network
Exploits in database: 3
- December 16, 2022
- OpenSSH/PAM 3.6.1p1 - 'gossh.sh' Remote Users Ident [Exploit-DB]
- OpenSSH/PAM 3.6.1p1 - Remote Users Discovery Tool [Exploit-DB]
- Portable OpenSSH 3.6.1p-PAM / 4.1-SuSE - Timing Attack Exploit [Exploit-DB]
Impact: Information disclosure
Vulnerable software:
OpenSSH
Server applications /
Remote management servers, RDP, SSH
Vendor: OpenSSH
