Vulnerability CVE-2012-0814

Vulnerability Name:

CVE-2012-0814 (CCN-72756)

Assigned:

2012-01-26

Published:

2012-01-26

Updated:

2023-02-13

Summary:

CVSS v3 Severity:

5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): Low Integrity (I): None Availibility (A): None

CVSS v2 Severity:

3.5 Low (CVSS v2 Vector: AV:N/AC:M/Au:S/C:P/I:N/A:N)
2.6 Low (Temporal CVSS v2 Vector: AV:N/AC:M/Au:S/C:P/I:N/A:N/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Authentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): Partial Integrity (I): None Availibility (A): None

5.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N)
3.7 Low (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): None Availibility (A): None

Vulnerability Consequences:

Obtain Information

References:

Source: CCN
Type: Debian Bug report logs - #657445
openssh-server: Forced Command handling leaks private information to ssh clients

Source: secalert@redhat.com
Type: UNKNOWN
secalert@redhat.com

Source: MITRE
Type: CNA
CVE-2012-0814

Source: secalert@redhat.com
Type: UNKNOWN
secalert@redhat.com

Source: secalert@redhat.com
Type: UNKNOWN
secalert@redhat.com

Source: secalert@redhat.com
Type: UNKNOWN
secalert@redhat.com

Source: secalert@redhat.com
Type: UNKNOWN
secalert@redhat.com

Source: secalert@redhat.com
Type: UNKNOWN
secalert@redhat.com

Source: CCN
Type: SA53468
Oracle Solaris Multiple Vulnerabilities

Source: secalert@redhat.com
Type: UNKNOWN
secalert@redhat.com

Source: secalert@redhat.com
Type: UNKNOWN
secalert@redhat.com

Source: CCN
Type: OSVDB ID: 78706
OpenSSH auth-options.c sshd auth_parse_options Function authorized_keys Command Option Debug Message Information Disclosure

Source: CCN
Type: BID-51702
Debian openssh-server Forced Command Handling Information Disclosure Vulnerability

Source: secalert@redhat.com
Type: UNKNOWN
secalert@redhat.com

Source: CCN
Type: Oracle Security Blog, May 21, 2013
CVE-2012-0814 Credentials Management vulnerability in SSH

Source: secalert@redhat.com
Type: UNKNOWN
secalert@redhat.com

Source: XF
Type: UNKNOWN
opensshserver-commands-info-disc(72756)

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:42410	P	Security update for pcre (Important)	2022-07-12
oval:org.opensuse.security:def:20120814	V	CVE-2012-0814	2022-05-20
oval:org.opensuse.security:def:32289	P	Security update for libvirt (Important)	2022-01-10
oval:org.opensuse.security:def:26186	P	Security update for libqt4 (Important)	2021-12-22
oval:org.opensuse.security:def:31722	P	Security update for xorg-x11-server (Important)	2021-12-20
oval:org.opensuse.security:def:31721	P	Security update for log4j (Important)	2021-12-17
oval:org.opensuse.security:def:26182	P	Security update for MozillaFirefox (Important)	2021-12-12
oval:org.opensuse.security:def:32223	P	Security update for postgresql, postgresql13, postgresql14 (Important)	2021-11-20
oval:org.opensuse.security:def:33016	P	Security update for python-urllib3 (Moderate)	2021-09-29
oval:org.opensuse.security:def:31687	P	Security update for sqlite3 (Important)	2021-09-23
oval:org.opensuse.security:def:32185	P	Security update for ghostscript (Critical)	2021-09-21
oval:org.opensuse.security:def:32184	P	Security update for openssl (Low)	2021-09-20
oval:org.opensuse.security:def:29422	P	Security update for gtk-vnc (Moderate)	2021-09-16
oval:org.opensuse.security:def:26129	P	Security update for gtk-vnc (Moderate)	2021-09-16
oval:org.opensuse.security:def:32175	P	Security update for the Linux Kernel (Live Patch 40 for SLE 12 SP3) (Important)	2021-08-25
oval:org.opensuse.security:def:26105	P	Security update for MozillaFirefox (Important)	2021-08-17
oval:org.opensuse.security:def:32966	P	Security update for curl (Moderate)	2021-07-21
oval:org.opensuse.security:def:26089	P	Security update for MozillaFirefox (Important)	2021-07-16
oval:org.opensuse.security:def:32959	P	Security update for libsolv (Important)	2021-06-28
oval:org.opensuse.security:def:30097	P	Security update for libnettle (Important)	2021-06-23
oval:org.opensuse.security:def:32128	P	Security update for the Linux Kernel (Live Patch 35 for SLE 12 SP3) (Important)	2021-06-18
oval:org.opensuse.security:def:36255	P	openssh-6.6p1-4.7 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:42662	P	openssh-6.6p1-4.7 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:32927	P	Security update for postgresql96 (Moderate)	2021-05-26
oval:org.opensuse.security:def:29361	P	Security update for the Linux Kernel (Important)	2021-05-17
oval:org.opensuse.security:def:32088	P	Security update for bind (Important)	2021-05-04
oval:org.opensuse.security:def:32079	P	Security update for the Linux Kernel (Live Patch 38 for SLE 12 SP3) (Important)	2021-04-28
oval:org.opensuse.security:def:30060	P	Security update for spamassassin (Important)	2021-04-12
oval:org.opensuse.security:def:33103	P	Security update for ovmf (Moderate)	2021-03-29
oval:org.opensuse.security:def:32272	P	Security update for python (Moderate)	2021-03-16
oval:org.opensuse.security:def:31733	P	Security update for java-1_8_0-openjdk (Moderate)	2021-02-19
oval:org.opensuse.security:def:32245	P	Security update for the Linux Kernel (Live Patch 34 for SLE 12 SP3) (Important)	2021-02-10
oval:org.opensuse.security:def:26146	P	Security update for python3 (Important)	2021-02-08
oval:org.opensuse.security:def:28926	P	Security update for python3 (Important)	2021-02-08
oval:org.opensuse.security:def:32135	P	Security update for postgresql, postgresql12, postgresql13 (Important)	2021-01-26
oval:org.opensuse.security:def:29378	P	Security update for java-1_7_1-ibm (Moderate)	2021-01-04
oval:org.opensuse.security:def:25977	P	Security update for openssl-1_1 (Important)	2020-12-10
oval:org.opensuse.security:def:42759	P	openssh-openssl1-6.6p1-10.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:36352	P	openssh-openssl1-6.6p1-10.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:36003	P	openssh-6.2p2-0.9.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:31481	P	Security update for python (Moderate)	2020-12-01
oval:org.opensuse.security:def:31836	P	Security update for bind (Important)	2020-12-01
oval:org.opensuse.security:def:33276	P	unixODBC_23 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:32031	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:32387	P	Security update for tomcat6 (Moderate)	2020-12-01
oval:org.opensuse.security:def:33471	P	Security update for lcms	2020-12-01
oval:org.opensuse.security:def:31818	P	Security update for audiofile (Moderate)	2020-12-01
oval:org.opensuse.security:def:32036	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:32428	P	Security update for xen (Important)	2020-12-01
oval:org.opensuse.security:def:32594	P	perl-Tk on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:32729	P	librpcsecgss on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:33404	P	Security update for zeromq (Important)	2020-12-01
oval:org.opensuse.security:def:25628	P	Security update for dpdk (Critical)	2020-12-01
oval:org.opensuse.security:def:25978	P	Security update for tcpdump, libpcap (Moderate)	2020-12-01
oval:org.opensuse.security:def:26270	P	Security update for mariadb-100 (Moderate)	2020-12-01
oval:org.opensuse.security:def:27350	P	openssh-openssl1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25816	P	Security update for libqt4 (Moderate)	2020-12-01
oval:org.opensuse.security:def:26483	P	Security update for chromium (Moderate)	2020-12-01
oval:org.opensuse.security:def:25902	P	Security update for ImageMagick (Moderate)	2020-12-01
oval:org.opensuse.security:def:26531	P	coolkey on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28628	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:28840	P	Security update for unzip	2020-12-01
oval:org.opensuse.security:def:29219	P	Security update for php53 (Important)	2020-12-01
oval:org.opensuse.security:def:31555	P	Security update for sqlite3 (Moderate)	2020-12-01
oval:org.opensuse.security:def:31923	P	Security update for ghostscript-library (Moderate)	2020-12-01
oval:org.opensuse.security:def:33315	P	openssh-openssl1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:32436	P	Security update for xen (Important)	2020-12-01
oval:org.opensuse.security:def:34109	P	Security update for mutt	2020-12-01
oval:org.opensuse.security:def:31819	P	Security update for augeas (Moderate)	2020-12-01
oval:org.opensuse.security:def:32484	P	PackageKit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26966	P	libpulse-browse0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:32638	P	bind on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:32864	P	fuse on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:33259	P	squidGuard on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:33427	P	Security update for Samba	2020-12-01
oval:org.opensuse.security:def:25552	P	Security update for python3-requests (Moderate)	2020-12-01
oval:org.opensuse.security:def:25756	P	Security update for python, python-base, python-doc (Moderate)	2020-12-01
oval:org.opensuse.security:def:26284	P	Security update for taglib (Low)	2020-12-01
oval:org.opensuse.security:def:25880	P	Security update for libvirt (Moderate)	2020-12-01
oval:org.opensuse.security:def:26230	P	Security update for libreoffice (Moderate)	2020-12-01
oval:org.opensuse.security:def:26522	P	apache2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25913	P	Security update for tcpdump, libpcap (Moderate)	2020-12-01
oval:org.opensuse.security:def:26243	P	Security update for libpcap (Important)	2020-12-01
oval:org.opensuse.security:def:26580	P	libQtWebKit4-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28629	P	Security update for Mozilla Firefox	2020-12-01
oval:org.opensuse.security:def:29273	P	Security update for xen (Important)	2020-12-01
oval:org.opensuse.security:def:31469	P	Security update for ppc64-diag	2020-12-01
oval:org.opensuse.security:def:31807	P	Security update for apache2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:32475	P	Security update for xscreensaver (Moderate)	2020-12-01
oval:org.opensuse.security:def:34149	P	Security update for openssh	2020-12-01
oval:org.opensuse.security:def:31830	P	Security update for bind (Critical)	2020-12-01
oval:org.opensuse.security:def:32533	P	java-1_6_0-ibm on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27001	P	openssh on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:32639	P	boost-license on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:33316	P	openvpn-openssl1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27218	P	libssh2-1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25553	P	Security update for mutt (Important)	2020-12-01
oval:org.opensuse.security:def:25837	P	Security update for ImageMagick (Important)	2020-12-01
oval:org.opensuse.security:def:26328	P	used on wotan :) (Low)	2020-12-01
oval:org.opensuse.security:def:25804	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:26008	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:26381	P	Security update for ffmpeg (Moderate)	2020-12-01
oval:org.opensuse.security:def:26536	P	dbus-1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26327	P	Security update for Chromium (Important)	2020-12-01
oval:org.opensuse.security:def:26619	P	ntp on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28640	P	Security update for bind (Important)	2020-12-01
oval:org.opensuse.security:def:28983	P	Security update for vorbis-tools (Moderate)	2020-12-01
oval:org.opensuse.security:def:29322	P	Security update for compat-openssl097g	2020-12-01
oval:org.opensuse.security:def:33179	P	libsamplerate on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31470	P	Security update for ppp	2020-12-01
oval:org.opensuse.security:def:31779	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:32541	P	krb5-plugin-kdb-ldap on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31939	P	Security update for glibc (Important)	2020-12-01
oval:org.opensuse.security:def:32331	P	Security update for samba (Moderate)	2020-12-01
oval:org.opensuse.security:def:32497	P	cron on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31904	P	Security update for foomatic-filters (Moderate)	2020-12-01
oval:org.opensuse.security:def:32572	P	libvorbis on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:32650	P	dhcp on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:33365	P	Security update for openvpn-openssl1 (Important)	2020-12-01
oval:org.opensuse.security:def:27253	P	openssh on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25564	P	Security update for tomcat (Important)	2020-12-01
oval:org.opensuse.security:def:25894	P	Security update for gstreamer-0_10-plugins-bad (Moderate)	2020-12-01
oval:org.opensuse.security:def:26231	P	Security update for mariadb-100 (Moderate)	2020-12-01
oval:org.opensuse.security:def:27315	P	virt-utils on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25805	P	Security update for flash-player (Important)	2020-12-01
oval:org.opensuse.security:def:26434	P	Security update for pdns (Important)	2020-12-01
oval:org.opensuse.security:def:26677	P	clamav on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25901	P	Security update for flash-player (Important)	2020-12-01
oval:org.opensuse.security:def:26478	P	Security update for nextcloud (Moderate)	2020-12-01
oval:org.opensuse.security:def:26633	P	python on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28709	P	Security update for hplip	2020-12-01
oval:org.opensuse.security:def:29067	P	Security update for clamav (Important)	2020-12-01
oval:org.opensuse.security:def:33218	P	openssh on GA media (Moderate)	2020-12-01

BACK