Software Engineering Institute

SSH Communications' Secure Shell contains a vulnerability in the decoding of BER/DER encoded packets. According to the SSH Communications Advisory:

BER/DER encoding is applied in digital certificates, which are used for authenticating a user to a host. Certificates are also commonly used for authenticating SSL/TLS connections.

Note that this vulnerability does not affect the non-commercial versions of SSH Secure Shell (Unix), as these versions do not contain the vulnerable ASN.1 related libraries.

This vulnerability may be related to the "Multiple vulnerabilities in SSL/TLS implementations" described in VU#104280.

A remote unauthenticated attaker may be able to crash the target server, causing a denial of service. Exploitation may also permit the execution of arbitrary code.

SSH Communications has released version 3.2.9 of SSH Secure Shell to resolve this issue. Please see the SSH Communications' Advisory for more details on upgrading. Likewise, vendors that redistribute versions of this product may provide their own patches or updates.

According to the SSH Communications' Advisory:

Your server is not vulnerable if:

• You are using password authentication only
• You use the non-commercial Unix distribution that does not contain the PKI functionality.
• You allow public key authentication WITHOUT specifying the "Pki" keyword in the server configuration file (sshd2_config).