Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
5
CVSSv2

CVE-2006-5484

Published: 24/10/2006 Updated: 28/08/2019
CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10
VMScore: 445
Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N
Subscribe to Tectia Server

Vulnerability Summary

SSH Tectia Client/Server/Connector 5.1.0 and previous versions, Manager 2.2.0 and previous versions, and other products, when using an RSA key with exponent 3, removes PKCS-1 padding before generating a hash, which allows remote malicious users to forge a PKCS #1 v1.5 signature that is signed by that RSA key and prevents Tectia from correctly verifying X.509 and other certificates that use PKCS #1, a similar issue to CVE-2006-4339.

Vulnerable Product Search on Vulmon Subscribe to Product

ssh tectia server

ssh tectia connector

ssh tectia manager

ssh tectia client

References

NVD-CWE-Otherhttp://www.ssh.com/company/news/2006/english/security/article/786/http://www.kb.cert.org/vuls/id/845620http://securitytracker.com/id?1017060http://securitytracker.com/id?1017061http://secunia.com/advisories/22350http://www.vupen.com/english/advisories/2006/4032https://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
race conditionCVE-2024-4249CVE-2024-4244CVE-2023-20198TCPCVE-2022-48648CVE-2022-48636CVE-2024-21345SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook