HomePentest-Tools.com Logo

Cisco IOS Software SSH X.509 Authentication Bypass Vulnerability CVE-2016-6474

Severity
CVSSv3 Score
7.3
Vulnerability description

A vulnerability in the implementation of X.509 Version 3 for SSH authentication functionality in Cisco IOS Software could allow an unauthenticated, remote attacker to bypass authentication on an affected system.

Risk description

The vulnerability is due to improper validation of X.509 signatures during the SSH authentication phase. An attacker could exploit this vulnerability by presenting an invalid X.509 signature to an affected system. A successful exploit could allow the attacker to impersonate an existing valid user over an SSH connection.

Recommendation

See the referenced vendor advisory for a solution.

Codename
Not available
Detectable with
Network Scanner
Scan engine
OpenVAS
Exploitable with Sniper
No
CVE Published
Dec 14, 2016
Detection added at
Software Type
Not available
Vendor
Not available
Product
Not available