Vulnerability Description
CRLF injection vulnerability in Dropbear SSH before 2016.72 allows remote authenticated users to bypass intended shell-command restrictions via crafted X11 forwarding data.
CVSS Score
6.4
MEDIUM
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Dropbear Ssh Project | Dropbear Ssh | <= 2015.71 |
References
- http://lists.fedoraproject.org/pipermail/package-announce/2016-March/179261.html
- http://lists.fedoraproject.org/pipermail/package-announce/2016-March/179269.html
- http://lists.fedoraproject.org/pipermail/package-announce/2016-March/179870.html
- http://lists.opensuse.org/opensuse-updates/2016-03/msg00105.html
- http://lists.opensuse.org/opensuse-updates/2016-03/msg00113.html
- http://packetstormsecurity.com/files/136251/Dropbear-SSHD-xauth-Command-Injectio
- http://seclists.org/fulldisclosure/2016/Mar/47
- https://github.com/tintinweb/pub/tree/master/pocs/cve-2016-3115
- https://matt.ucc.asn.au/dropbear/CHANGES
- https://security.gentoo.org/glsa/201607-08
- http://lists.fedoraproject.org/pipermail/package-announce/2016-March/179261.html
- http://lists.fedoraproject.org/pipermail/package-announce/2016-March/179269.html
- http://lists.fedoraproject.org/pipermail/package-announce/2016-March/179870.html
- http://lists.opensuse.org/opensuse-updates/2016-03/msg00105.html
- http://lists.opensuse.org/opensuse-updates/2016-03/msg00113.html
FAQ
What is CVE-2016-3116?
CVE-2016-3116 is a vulnerability with a CVSS score of 6.4 (MEDIUM). CRLF injection vulnerability in Dropbear SSH before 2016.72 allows remote authenticated users to bypass intended shell-command restrictions via crafted X11 forwarding data.
How severe is CVE-2016-3116?
CVE-2016-3116 has been rated MEDIUM with a CVSS base score of 6.4/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2016-3116?
Check the references section above for vendor advisories and patch information. Affected products include: Dropbear Ssh Project Dropbear Ssh.