Vulnerability: Local Attackers Can Recover SUN-DES-1 Magic Phrase in ssh-keygen

Vulnerability: Local Attackers Can Recover SUN-DES-1 Magic Phrase in ssh-keygen

CVE-2001-0259 · LOW Severity

AV:L/AC:L/AU:N/C:P/I:P/A:N

ssh-keygen in ssh 1.2.27 - 1.2.30 with Secure-RPC can allow local attackers to recover a SUN-DES-1 magic phrase generated by another user, which the attacker can use to decrypt that user's private key file.

Learn more about our User Device Pen Test.