CVE-2008-0166

HIGH

Details

Source: MITRE

Published: 2008-05-13

Updated: 2018-10-15

Type: CWE-310

Risk Information

CVSS v2.0

Base Score: 7.8

Vector: AV:N/AC:L/Au:N/C:C/I:N/A:N

Impact Score: 6.9

Exploitability Score: 10

Severity: HIGH

Vulnerable Software

Configuration 1

OR

cpe:2.3:a:openssl_project:openssl:0.9.8c-1:*:*:*:*:*:*:*

cpe:2.3:a:openssl_project:openssl:0.9.8c-2:*:*:*:*:*:*:*

cpe:2.3:a:openssl_project:openssl:0.9.8c-3:*:*:*:*:*:*:*

cpe:2.3:a:openssl_project:openssl:0.9.8c-4:*:*:*:*:*:*:*

cpe:2.3:a:openssl_project:openssl:0.9.8c-5:*:*:*:*:*:*:*

cpe:2.3:a:openssl_project:openssl:0.9.8c-6:*:*:*:*:*:*:*

cpe:2.3:a:openssl_project:openssl:0.9.8c-7:*:*:*:*:*:*:*

cpe:2.3:a:openssl_project:openssl:0.9.8c-8:*:*:*:*:*:*:*

cpe:2.3:a:openssl_project:openssl:0.9.8c-9:*:*:*:*:*:*:*

cpe:2.3:a:openssl_project:openssl:0.9.8d-1:*:*:*:*:*:*:*

cpe:2.3:a:openssl_project:openssl:0.9.8d-2:*:*:*:*:*:*:*

cpe:2.3:a:openssl_project:openssl:0.9.8d-3:*:*:*:*:*:*:*

cpe:2.3:a:openssl_project:openssl:0.9.8d-4:*:*:*:*:*:*:*

cpe:2.3:a:openssl_project:openssl:0.9.8d-5:*:*:*:*:*:*:*

cpe:2.3:a:openssl_project:openssl:0.9.8d-6:*:*:*:*:*:*:*

cpe:2.3:a:openssl_project:openssl:0.9.8d-7:*:*:*:*:*:*:*

cpe:2.3:a:openssl_project:openssl:0.9.8d-8:*:*:*:*:*:*:*

cpe:2.3:a:openssl_project:openssl:0.9.8d-9:*:*:*:*:*:*:*

cpe:2.3:a:openssl_project:openssl:0.9.8e-1:*:*:*:*:*:*:*

cpe:2.3:a:openssl_project:openssl:0.9.8e-2:*:*:*:*:*:*:*

cpe:2.3:a:openssl_project:openssl:0.9.8e-3:*:*:*:*:*:*:*

cpe:2.3:a:openssl_project:openssl:0.9.8e-4:*:*:*:*:*:*:*

cpe:2.3:a:openssl_project:openssl:0.9.8e-5:*:*:*:*:*:*:*

cpe:2.3:a:openssl_project:openssl:0.9.8e-6:*:*:*:*:*:*:*

cpe:2.3:a:openssl_project:openssl:0.9.8e-7:*:*:*:*:*:*:*

cpe:2.3:a:openssl_project:openssl:0.9.8e-8:*:*:*:*:*:*:*

cpe:2.3:a:openssl_project:openssl:0.9.8e-9:*:*:*:*:*:*:*

cpe:2.3:a:openssl_project:openssl:0.9.8f-1:*:*:*:*:*:*:*

cpe:2.3:a:openssl_project:openssl:0.9.8f-2:*:*:*:*:*:*:*

cpe:2.3:a:openssl_project:openssl:0.9.8f-3:*:*:*:*:*:*:*

cpe:2.3:a:openssl_project:openssl:0.9.8f-4:*:*:*:*:*:*:*

cpe:2.3:a:openssl_project:openssl:0.9.8f-5:*:*:*:*:*:*:*

cpe:2.3:a:openssl_project:openssl:0.9.8f-6:*:*:*:*:*:*:*

cpe:2.3:a:openssl_project:openssl:0.9.8f-7:*:*:*:*:*:*:*

cpe:2.3:a:openssl_project:openssl:0.9.8f-8:*:*:*:*:*:*:*

cpe:2.3:a:openssl_project:openssl:0.9.8f-9:*:*:*:*:*:*:*

cpe:2.3:a:openssl_project:openssl:0.9.8g-1:*:*:*:*:*:*:*

cpe:2.3:a:openssl_project:openssl:0.9.8g-2:*:*:*:*:*:*:*

cpe:2.3:a:openssl_project:openssl:0.9.8g-3:*:*:*:*:*:*:*

cpe:2.3:a:openssl_project:openssl:0.9.8g-4:*:*:*:*:*:*:*

cpe:2.3:a:openssl_project:openssl:0.9.8g-5:*:*:*:*:*:*:*

cpe:2.3:a:openssl_project:openssl:0.9.8g-6:*:*:*:*:*:*:*

cpe:2.3:a:openssl_project:openssl:0.9.8g-7:*:*:*:*:*:*:*

cpe:2.3:a:openssl_project:openssl:0.9.8g-8:*:*:*:*:*:*:*

cpe:2.3:a:openssl_project:openssl:0.9.8g-9:*:*:*:*:*:*:*

Tenable Plugins

View all (11 total)

IDNameProductFamilySeverity
65109Ubuntu 7.04 / 7.10 / 8.04 LTS : openssh vulnerability (USN-612-2)NessusUbuntu Local Security Checks
high
65108Ubuntu 7.04 / 7.10 / 8.04 LTS : openssl vulnerability (USN-612-1)NessusUbuntu Local Security Checks
high
32430Ubuntu 6.06 LTS : openssh update (USN-612-7)NessusUbuntu Local Security Checks
high
32377Debian DSA-1576-1 : openssh - predictable random number generatorNessusDebian Local Security Checks
high
32359Ubuntu 7.04 / 7.10 / 8.04 LTS : openssh update (USN-612-5)NessusUbuntu Local Security Checks
high
32358Ubuntu 7.04 / 7.10 / 8.04 LTS : ssl-cert vulnerability (USN-612-4)NessusUbuntu Local Security Checks
high
32357Ubuntu 7.04 / 7.10 / 8.04 LTS : openvpn vulnerability (USN-612-3)NessusUbuntu Local Security Checks
high
32321Debian OpenSSH/OpenSSL Package Random Number Generator Weakness (SSL check)NessusGain a shell remotely
critical
32320Weak Debian OpenSSH Keys in ~/.ssh/authorized_keysNessusGain a shell remotely
critical
32314Debian OpenSSH/OpenSSL Package Random Number Generator WeaknessNessusGain a shell remotely
critical
32305Debian DSA-1571-1 : openssl - predictable random number generatorNessusDebian Local Security Checks
high