What is CVE-2012-5975?

CVE-2012-5975 is a vulnerability in Linux Linux_kernel, classified under Improper Authentication. Published 2012-12-04.

Is CVE-2012-5975 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Auth bypass in Linux Linux_kernel

CVE-2012-5975

The SSH USERAUTH CHANGE REQUEST feature in SSH Tectia Server 6.0.4 through 6.0.20, 6.1.0 through 6.1.12, 6.2.0 through 6.2.5, and 6.3.0 through 6.3.2 on UNIX and Linux, when old-style password authentication is enabled, allows remote attac…

Vulnerability class: Broken Authentication

EPSS: 0.257 (96.4th percentile) — read the EPSS interpretation.

Affected products

Linux Linux_kernel
Ssh Tectia_server — versions 6.0.4, 6.0.5, 6.0.6
N/a — versions n/a

Weakness classification (CWE)

CWE-287 — Improper Authentication

Public proof-of-concept exploits

rapid7/metasploit-framework

References

23082 (exploit, x_refsource_EXPLOIT-DB)
20121203 Re: SSH.com Communications SSH Tectia Authentication Bypass Remote Zeroday Exploit (king cope) (mailing-list, x_refsource_FULLDISC)
20121201 SSH.com Communications SSH Tectia Authentication Bypass Remote Zeroday Exploit (mailing-list, x_refsource_FULLDISC)
cve@mitre.org (Exploit, x_refsource_MISC)

Frequently asked questions

What is CVE-2012-5975?: CVE-2012-5975 is a vulnerability in Linux Linux_kernel, classified under Improper Authentication. Published 2012-12-04.
Is CVE-2012-5975 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.