Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2012-0814

The auth_parse_options function in auth-options.c in sshd in OpenSSH before 5.7 provides debug messages containing authorized_keys command options, which allows remote authenticated users to obtain potentially sensitive information by reading these messages, as demonstrated by the shared user account required by Gitolite. NOTE: this can cross privilege boundaries because a user account may intentionally have no shell or filesystem access, and therefore may have no supported way to read an authorized_keys file in its own home directory.

  • Published: Jan 27, 2012
  • Updated: Nov 8, 2023
  • CVE: CVE-2012-0814
  • Severity: Low
  • Exploit:

CVSS v2:

  • Severity: Low
  • Score: 3.5
  • AV:N/AC:M/Au:S/C:P/I:N/A:N

CWEs:

Software From Fixed in
openbsd / openssh 5.4 5.4.x
openbsd / openssh 2 2.x
openbsd / openssh 3.8 3.8.x
openbsd / openssh 3.8.1p1 3.8.1p1.x
openbsd / openssh 4.3p2 4.3p2.x
openbsd / openssh 3.2.2 3.2.2.x
openbsd / openssh 3.1 3.1.x
openbsd / openssh 5.5 5.5.x
openbsd / openssh 3.0.2p1 3.0.2p1.x
openbsd / openssh 1.5.8 1.5.8.x
openbsd / openssh 5.3 5.3.x
openbsd / openssh 4.1 4.1.x
openbsd / openssh 3.8.1 3.8.1.x
openbsd / openssh 2.1.1 2.1.1.x
openbsd / openssh 3.7.1p2 3.7.1p2.x
openbsd / openssh 4.8 4.8.x
openbsd / openssh 4.9 4.9.x
openbsd / openssh 3.2.3p1 3.2.3p1.x
openbsd / openssh 3.1p1 3.1p1.x
openbsd / openssh 2.5.1 2.5.1.x
openbsd / openssh 2.9.9p2 2.9.9p2.x
openbsd / openssh 3.6.1p2 3.6.1p2.x
openbsd / openssh 3.9 3.9.x
openbsd / openssh 3.0 3.0.x
openbsd / openssh 1.2.1 1.2.1.x
openbsd / openssh 2.2 2.2.x
openbsd / openssh 3.2 3.2.x
openbsd / openssh 3.6 3.6.x
openbsd / openssh 4.7 4.7.x
openbsd / openssh 1.5.7 1.5.7.x
openbsd / openssh 1.2.3 1.2.3.x
openbsd / openssh 3.7 3.7.x
openbsd / openssh 4.0p1 4.0p1.x
openbsd / openssh 3.5p1 3.5p1.x
openbsd / openssh 2.3.1 2.3.1.x
openbsd / openssh 3.0.1p1 3.0.1p1.x
openbsd / openssh 4.4 4.4.x
openbsd / openssh 3.7.1p1 3.7.1p1.x
openbsd / openssh 2.1 2.1.x
openbsd / openssh 1.2 1.2.x
openbsd / openssh 5.2 5.2.x
openbsd / openssh 3.3 3.3.x
openbsd / openssh 3.2.2p1 3.2.2p1.x
openbsd / openssh 3.9.1p1 3.9.1p1.x
openbsd / openssh 3.0.2 3.0.2.x
openbsd / openssh 3.4p1 3.4p1.x
openbsd / openssh 3.6.1p1 3.6.1p1.x
openbsd / openssh 3.0.1 3.0.1.x
openbsd / openssh 2.9.9 2.9.9.x
openbsd / openssh 3.6.1 3.6.1.x
openbsd / openssh 4.1p1 4.1p1.x
openbsd / openssh 1.2.2 1.2.2.x
openbsd / openssh 4.2p1 4.2p1.x
openbsd / openssh 4.5 4.5.x
openbsd / openssh 2.9p1 2.9p1.x
openbsd / openssh 2.9 2.9.x
openbsd / openssh 3.7.1 3.7.1.x
openbsd / openssh - 5.6.x
openbsd / openssh 1.2.27 1.2.27.x
openbsd / openssh 4.2 4.2.x
openbsd / openssh 2.5.2 2.5.2.x
openbsd / openssh 2.3 2.3.x
openbsd / openssh 3.4 3.4.x
openbsd / openssh 4.4p1 4.4p1.x
openbsd / openssh 4.3p1 4.3p1.x
openbsd / openssh 3.5 3.5.x
openbsd / openssh 2.5 2.5.x
openbsd / openssh 5.1 5.1.x
openbsd / openssh 3.0p1 3.0p1.x
openbsd / openssh 3.3p1 3.3p1.x
openbsd / openssh 4.3 4.3.x
openbsd / openssh 4.0 4.0.x
openbsd / openssh 3.9.1 3.9.1.x
openbsd / openssh 5.0 5.0.x
openbsd / openssh 1.3 1.3.x
openbsd / openssh 2.9p2 2.9p2.x
openbsd / openssh 1.5 1.5.x
openbsd / openssh 4.6 4.6.x