CVE-2008-2285

Published: 18 May 2008

The ssh-vulnkey tool on Ubuntu Linux 7.04, 7.10, and 8.04 LTS does not recognize authorized_keys lines that contain options, which makes it easier for remote attackers to exploit CVE-2008-0166 by guessing a key that was not identified by this tool.

Priority

Low

Status

Package Release Status
openssh
Launchpad, Ubuntu, Debian
Upstream Not vulnerable