Amazon Linux AMI update for openssh
| Risk | High |
| Patch available | YES |
| Number of vulnerabilities | 2 |
| CVE-ID | CVE-2016-0777 CVE-2016-0778 |
| CWE-ID | CWE-284 |
| Exploitation vector | Network |
| Public exploit | N/A |
| Vulnerable software |
Amazon Linux AMI Operating systems & Components / Operating system |
| Vendor | Amazon Web Services |
Security Bulletin
This security bulletin contains information about 2 vulnerabilities.
1) Information disclosure
EUVDB-ID: #VU718
Risk: Low
CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2016-0777
CWE-ID:
CWE-284 - Improper Access Control
Exploit availability: No
DescriptionThe vulnerability allows a remote user to disclose potentially sensitive information on the target system.
The weakness exists due to access control flaw that allows a malicious user to disclose important data.
Successful exploitation of the vulnerability leads to potentially sensitive information disclosure.
Update the affected packages.
i686:Vulnerable software versions
openssh-server-6.6.1p1-23.59.amzn1.i686
openssh-6.6.1p1-23.59.amzn1.i686
openssh-ldap-6.6.1p1-23.59.amzn1.i686
pam_ssh_agent_auth-0.9.3-9.23.59.amzn1.i686
openssh-debuginfo-6.6.1p1-23.59.amzn1.i686
openssh-clients-6.6.1p1-23.59.amzn1.i686
openssh-keycat-6.6.1p1-23.59.amzn1.i686
src:
openssh-6.6.1p1-23.59.amzn1.src
x86_64:
pam_ssh_agent_auth-0.9.3-9.23.59.amzn1.x86_64
openssh-keycat-6.6.1p1-23.59.amzn1.x86_64
openssh-server-6.6.1p1-23.59.amzn1.x86_64
openssh-debuginfo-6.6.1p1-23.59.amzn1.x86_64
openssh-clients-6.6.1p1-23.59.amzn1.x86_64
openssh-ldap-6.6.1p1-23.59.amzn1.x86_64
openssh-6.6.1p1-23.59.amzn1.x86_64
Amazon Linux AMI: All versions
CPE2.3 External linkshttps://alas.aws.amazon.com/ALAS-2016-638.html
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
2) Denial of service
EUVDB-ID: #VU719
Risk: High
CVSSv4.0: 8.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]
CVE-ID: CVE-2016-0778
CWE-ID:
CWE-284 - Improper Access Control
Exploit availability: No
DescriptionThe vulnerability allows a remote user to cause denial of service conditions on the target system.
The weakness is due to insufficient access control that allows attackers to cause the service deny.
Successful exploitation of the vulnerability leads to denial of service on the vulnerable system.
Update the affected packages.
i686:Vulnerable software versions
openssh-server-6.6.1p1-23.59.amzn1.i686
openssh-6.6.1p1-23.59.amzn1.i686
openssh-ldap-6.6.1p1-23.59.amzn1.i686
pam_ssh_agent_auth-0.9.3-9.23.59.amzn1.i686
openssh-debuginfo-6.6.1p1-23.59.amzn1.i686
openssh-clients-6.6.1p1-23.59.amzn1.i686
openssh-keycat-6.6.1p1-23.59.amzn1.i686
src:
openssh-6.6.1p1-23.59.amzn1.src
x86_64:
pam_ssh_agent_auth-0.9.3-9.23.59.amzn1.x86_64
openssh-keycat-6.6.1p1-23.59.amzn1.x86_64
openssh-server-6.6.1p1-23.59.amzn1.x86_64
openssh-debuginfo-6.6.1p1-23.59.amzn1.x86_64
openssh-clients-6.6.1p1-23.59.amzn1.x86_64
openssh-ldap-6.6.1p1-23.59.amzn1.x86_64
openssh-6.6.1p1-23.59.amzn1.x86_64
Amazon Linux AMI: All versions
CPE2.3 External linkshttps://alas.aws.amazon.com/ALAS-2016-638.html
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
