Guest

Preview Tool

Cisco Bug: CSCul78967 - CX OpenSSH CBC Mode Information Disclosure Vulnerability CVE-2008-5161

Last Modified

May 13, 2020

Products (1)

  • Cisco ASA Next-Generation Firewall Services

Known Affected Releases

9.2(1.2.42)

Description (partial)

Symptom:
Cisco ASA-CX includes a version of OpenSSH that is affected by the vulnerabilities identified by the following Common Vulnerability and Exposures 
(CVE) IDs: 

CVE-2008-5161

This bug was opened to address the potential impact on this product.

Conditions:
Device with default configuration.

Related Community Discussions

CISCO ASA OPEN SSH Vulnerability.
Hi All, On one of our Cisco ASA 5525 we are having OS of   asa912-smp-k8.bin , but  it has a BUG Related to OPEN SSH,  BUG ID:  <key>CSCul78967</key> and CVE ID: CVE-2008-5161, Bug Tool Shows no work around for this please share your inputs on this!!!! https://tools.cisco.com/bugsearch/bug/<key>CSCul78967</key>/?referring_site=bugquickviewredir Bug Is all about below details: Please share your Valuable inputs...!!!! 1. SSH Weak MAC Algorithms Enabled 2. SSH Server CBC Mode Ciphers Enabled SSH is configured to allow MD5 ...
Latest activity: Dec 03, 2015
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.