CVE-2011-4327

MEDIUM

OpenSSH <5.8p2 - Local Info Disclosure

Title source: llm
STIX 2.1

Description

ssh-keysign.c in ssh-keysign in OpenSSH before 5.8p2 on certain platforms executes ssh-rand-helper with unintended open file descriptors, which allows local users to obtain sensitive key information via the ptrace system call.

References (2)

Core 2
Core References
Issue Tracking x_refsource_confirm
https://bugzilla.redhat.com/show_bug.cgi?id=755640

Scores

CVSS v3 5.5
EPSS 0.0042
EPSS Percentile 33.5%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact partial

Details

CWE
CWE-200
Status published
Products (50)
openbsd/openssh 1.2
openbsd/openssh 1.2.1
openbsd/openssh 1.2.2
openbsd/openssh 1.2.3
openbsd/openssh 1.2.27
openbsd/openssh 1.3
openbsd/openssh 1.5
openbsd/openssh 1.5.7
openbsd/openssh 1.5.8
openbsd/openssh 2
... and 40 more
Published Feb 03, 2014
Tracked Since Feb 18, 2026