Severity : Low
Published : 2012-01-27
Modified : 2012-02-16
Base Score : 3.5
Details : The auth_parse_options function in auth-options.c in sshd in OpenSSH before 5.7 provides debug messages containing authorized_keys command options, which allows remote authenticated users to obtain potentially sensitive information by reading these messages, as demonstrated by the shared user account required by Gitolite. NOTE: this can cross privilege boundaries because a user account may intentionally have no shell or filesystem access, and therefore may have no supported way to read an authorized_keys file in its own home directory.
Product/Version : Carrier Grade CGE 5.1  
Pro 4.x  
CGE 4.x  
Mobilinux 4.x  
Mobilinux 5.0.24  
MVL 5 Atom  
Pro 5.0.24  
MVL 5 OMAP3530  
Pro 5.0  
CGE 5.x  
Mobilinux 5.x  
Carrier Grade CGE 6.0  

CVE Vulnerabilities List CVE-2012

CVE-2012-0027 CVE-2012-0028 CVE-2012-0029 CVE-2012-0031
CVE-2012-0038 CVE-2012-0041 CVE-2012-0042 CVE-2012-0043
CVE-2012-0044 CVE-2012-0045 CVE-2012-0053 CVE-2012-0060
CVE-2012-0061 CVE-2012-0066 CVE-2012-0067 CVE-2012-0068
CVE-2012-0390 CVE-2012-0814 CVE-2012-0815 CVE-2012-0840
CVE-2012-0841 CVE-2012-0845 CVE-2012-0862 CVE-2012-0864
CVE-2012-0876 CVE-2012-0879 CVE-2012-0884 CVE-2012-1088
CVE-2012-1097 CVE-2012-1126 CVE-2012-1127 CVE-2012-1128
CVE-2012-1129 CVE-2012-1130 CVE-2012-1131 CVE-2012-1132
CVE-2012-1133 CVE-2012-1134 CVE-2012-1135 CVE-2012-1136
CVE-2012-1139 CVE-2012-1141 CVE-2012-1142 CVE-2012-1143
CVE-2012-1144 CVE-2012-1146 CVE-2012-1147 CVE-2012-1148
CVE-2012-1150 CVE-2012-1164 CVE-2012-1165 CVE-2012-1173
CVE-2012-1179 CVE-2012-1182 CVE-2012-1569 CVE-2012-1573
CVE-2012-1593 CVE-2012-1595 CVE-2012-1596 CVE-2012-1667
CVE-2012-2100 CVE-2012-2110 CVE-2012-2111 CVE-2012-2121
CVE-2012-2123 CVE-2012-2131 CVE-2012-2133 CVE-2012-2136
CVE-2012-2141 CVE-2012-2313 CVE-2012-2319 CVE-2012-2333
CVE-2012-2372 CVE-2012-2373 CVE-2012-2389 CVE-2012-2392
CVE-2012-2393 CVE-2012-2394 CVE-2012-2663 CVE-2012-2693
CVE-2012-2745 CVE-2012-2807 CVE-2012-2871 CVE-2012-3375
CVE-2012-3400 CVE-2012-3401 CVE-2012-3404 CVE-2012-3405
CVE-2012-3406 CVE-2012-3410 CVE-2012-3412 CVE-2012-3417
CVE-2012-3425 CVE-2012-3445 CVE-2012-3450 CVE-2012-3480
CVE-2012-3509 CVE-2012-3511 CVE-2012-3524 CVE-2012-3548
CVE-2012-3817 CVE-2012-4024 CVE-2012-4025 CVE-2012-4048
CVE-2012-4049 CVE-2012-4244 CVE-2012-4285 CVE-2012-4288
CVE-2012-4289 CVE-2012-4290 CVE-2012-4291 CVE-2012-4292
CVE-2012-4293 CVE-2012-4296 CVE-2012-4388 CVE-2012-4398
CVE-2012-4412 CVE-2012-4423 CVE-2012-4424 CVE-2012-4444
CVE-2012-4508 CVE-2012-4530 CVE-2012-4564 CVE-2012-4565
CVE-2012-5134 CVE-2012-5166 CVE-2012-5374 CVE-2012-5375
CVE-2012-5643 CVE-2012-5668 CVE-2012-5669 CVE-2012-6139
CVE-2012-6151 CVE-2012-6329 CVE-2012-6545 CVE-2012-6546