Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 554
Alerts This Week
Warning Icon 1 554

SSH 1.5 Advisory: Session Key Recovery Threat Assessment

General Esm H446
The CORE SDI team has found a vulnerability in the SSH 1.5 protocol that allows an attacker to retrieve the session key, which could then allow them to decrypt network traffic. This attack was discovered by David Bleichenbacher. . . . The CORE SDI team has found a vulnerability in the SSH 1.5 protocol that allows an attacker to retrieve the session key, which could then allow them to decrypt network traffic. This attack was discovered by David Bleichenbacher.