F5 Networks BIG-IP : libssh vulnerability (K57255643)
Medium Nessus Plugin ID 93750
SynopsisThe remote device is missing a vendor-supplied security patch.
Descriptionlibssh before 0.7.3 improperly truncates ephemeral secrets generated for the (1) diffie-hellman-group1 and (2) diffie-hellman-group14 key exchange methods to 128 bits, which makes it easier for man-in-the-middle attackers to decrypt or intercept SSH sessions via unspecified vectors, aka a 'bits/bytes confusion bug.' (CVE-2016-0739)
SolutionUpgrade to one of the non-vulnerable versions listed in the F5 Solution K57255643.