CVE-2008-5161

Error handling in the SSH protocol in (1) SSH Tectia Client and Server and Connector 4.0 through 4.4.11, 5.0 through 5.2.4, and 5.3 through 5.3.8; Client and Server and ConnectSecure 6.0 through 6.0.4; Server for Linux on IBM System z 6.0.4; Server for IBM z/OS 5.5.1 and earlier, 6.0.0, and 6.0.1; and Client 4.0-J through 4.3.3-J and 4.0-K through 4.3.10-K; and (2) OpenSSH 4.7p1 and possibly other versions, when using a block cipher algorithm in Cipher Block Chaining (CBC) mode, makes it easier for remote attackers to recover certain plaintext data from an arbitrary block of ciphertext in an SSH session via unknown vectors.

Published: 2008-11-19 Last update: 2026-05-28 Assigner: [email protected] Source: [email protected]
NVD Status:ModifiedCVE State: published
View at NVD, CVE.org, EUVD

CVE-2008-5161 is rated Moderate Risk (43.4/100): CVSS Low severity, with medium exploitation likelihood (EPSS 1.64%). Review affected assets and schedule remediation.

Risk is dynamic; we continuously reassess and refresh what is shown on this page as upstream context changes.

Exploit prediction scoring system (EPSS) score for CVE-2008-5161

EPSS lead: Daily EPSS estimates relative likelihood of exploitation; percentile ranks this CVE among scored vulnerabilities (higher = more severe relative rank).

# Date Old EPSS score New EPSS score Delta (New - Old)
1 2026-06-05 1.85% 1.64% -0.21%
2 2026-05-31 1.60% 1.85% +0.25%
3 2026-05-29 1.60%

Full EPSS history (53 records total)

Common vulnerability scoring system (CVSS) metrics for CVE-2008-5161

CVSS metrics for this CVE.

Base score Version Severity Vector Exploitability Impact Score source
3.7 3.1 LOW
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N Click to expand
Attack vector (AV:N)
Could be attacked over the internet or any normal routed network—not just someone sitting at the machine.
Attack complexity (AC:H)
Even with access, the exploit needs extra luck, timing, or a fussy environment to actually work.
Privileges required (PR:N)
No account or special rights needed—anonymous or random user is enough.
User interaction (UI:N)
Nobody has to click “OK” or open a trap file; it can work without a victim helping.
Scope (S:U)
Damage stays in the same “trust bubble” as the broken component—no big spill into unrelated systems.
Confidentiality (C:L)
Some sensitive info could get out, but not a total data dump.
Integrity (I:N)
Data isn’t meaningfully altered or forged.
Availability (A:N)
Service keeps running; no real outage angle.
 2.2 1.4 134c704f-9b21-4f2e-91b3-4a467353bcc0
2.6 2.0 LOW
AV:N/AC:H/Au:N/C:P/I:N/A:N Click to expand
Access vector (AV:N)
Can be exploited remotely over network reachability.
Access complexity (AC:H)
Exploitation requires uncommon or highly specific conditions.
Authentication (AU:N)
No authentication is required.
Confidentiality impact (C:P)
Partial confidentiality impact.
Integrity impact (I:N)
No integrity impact.
Availability impact (A:N)
No availability impact.
 4.9 2.9 [email protected]

Weakness enumeration for CVE-2008-5161

GitHub Security Advisory for CVE-2008-5161

GHSA-c9pj-mwph-2xjm · Severity: low — Error handling in the SSH protocol in (1) SSH Tectia Client and Server and Connector 4.0 through...

OS Trackers for CVE-2008-5161

vendor priority summary link
debian low CVE-2008-5161 low priority: Debian including 1 source packages (openssh), 5 status rows across 5 suites (bookworm, bullseye, forky, sid, trixie): resolved 5. https://security-tracker.debian.org/tracker/CVE-2008-5161
gentoo high CVE-2008-5161: 1 GLSA(s) (201405-06), 1 atom(s) (net-misc/openssh); latest impact high. https://bugs.gentoo.org/buglist.cgi?quicksearch=CVE-2008-5161
redhat low https://access.redhat.com/security/cve/CVE-2008-5161
ubuntu low CVE-2008-5161 low priority: Ubuntu including 1 source packages (openssh), 14 status rows across 14 suites (dapper, gutsy, hardy, intrepid, jaunty, karmic, lucid, maverick, natty, oneiric, precise, quantal, raring, upstream): not-affected 7, ignored 6, released 1. https://ubuntu.com/security/CVE-2008-5161

NVD evaluator notes for CVE-2008-5161

Comment: http://securitytracker.com/alerts/2008/Nov/1021235.html CBC mode connections are affected

Solution: With a valid username and password patches are available at the following link: https://downloads.ssh.com/

Vendor comments (NVD) for CVE-2008-5161

  • Red Hat (2009-09-02T00:00:00)

    This issue was addressed for Red Hat Enterprise Linux 5 by https://rhn.redhat.com/errata/RHSA-2009-1287.html After reviewing the upstream fix for this issue, Red Hat does not intend to address this flaw in Red Hat Enterprise Linux 3 or 4 at this time.

Affected software / configurations for CVE-2008-5161

Vendor Product Version Raw CPE
openbsd openssh 4.7p1 cpe:2.3:a:openbsd:openssh:4.7p1:*:*:*:*:*:*:*
ssh tectia_client 4.0 cpe:2.3:a:ssh:tectia_client:4.0:*:*:*:*:*:*:*
ssh tectia_client 4.0.1 cpe:2.3:a:ssh:tectia_client:4.0.1:*:*:*:*:*:*:*
ssh tectia_client 4.0.3 cpe:2.3:a:ssh:tectia_client:4.0.3:*:*:*:*:*:*:*
ssh tectia_client 4.0.4 cpe:2.3:a:ssh:tectia_client:4.0.4:*:*:*:*:*:*:*
ssh tectia_client 4.0.5 cpe:2.3:a:ssh:tectia_client:4.0.5:*:*:*:*:*:*:*
ssh tectia_client 4.2 cpe:2.3:a:ssh:tectia_client:4.2:*:*:*:*:*:*:*
ssh tectia_client 4.2.1 cpe:2.3:a:ssh:tectia_client:4.2.1:*:*:*:*:*:*:*
ssh tectia_client 4.3 cpe:2.3:a:ssh:tectia_client:4.3:*:*:*:*:*:*:*
ssh tectia_client 4.3.1 cpe:2.3:a:ssh:tectia_client:4.3.1:*:*:*:*:*:*:*
ssh tectia_client 4.3.1j cpe:2.3:a:ssh:tectia_client:4.3.1j:*:*:*:*:*:*:*
ssh tectia_client 4.3.2 cpe:2.3:a:ssh:tectia_client:4.3.2:*:*:*:*:*:*:*
ssh tectia_client 4.3.2j cpe:2.3:a:ssh:tectia_client:4.3.2j:*:*:*:*:*:*:*
ssh tectia_client 4.3.3 cpe:2.3:a:ssh:tectia_client:4.3.3:*:*:*:*:*:*:*
ssh tectia_client 4.3.4 cpe:2.3:a:ssh:tectia_client:4.3.4:*:*:*:*:*:*:*
ssh tectia_client 4.3.5 cpe:2.3:a:ssh:tectia_client:4.3.5:*:*:*:*:*:*:*
ssh tectia_client 4.3.6 cpe:2.3:a:ssh:tectia_client:4.3.6:*:*:*:*:*:*:*
ssh tectia_client 4.3.7 cpe:2.3:a:ssh:tectia_client:4.3.7:*:*:*:*:*:*:*
ssh tectia_client 4.3.8k cpe:2.3:a:ssh:tectia_client:4.3.8k:*:*:*:*:*:*:*
ssh tectia_client 4.3.9k cpe:2.3:a:ssh:tectia_client:4.3.9k:*:*:*:*:*:*:*
ssh tectia_client 4.4 cpe:2.3:a:ssh:tectia_client:4.4:*:*:*:*:*:*:*
ssh tectia_client 4.4.1 cpe:2.3:a:ssh:tectia_client:4.4.1:*:*:*:*:*:*:*
ssh tectia_client 4.4.2 cpe:2.3:a:ssh:tectia_client:4.4.2:*:*:*:*:*:*:*
ssh tectia_client 4.4.3 cpe:2.3:a:ssh:tectia_client:4.4.3:*:*:*:*:*:*:*
ssh tectia_client 4.4.4 cpe:2.3:a:ssh:tectia_client:4.4.4:*:*:*:*:*:*:*
ssh tectia_client 4.4.6 cpe:2.3:a:ssh:tectia_client:4.4.6:*:*:*:*:*:*:*
ssh tectia_client 4.4.7 cpe:2.3:a:ssh:tectia_client:4.4.7:*:*:*:*:*:*:*
ssh tectia_client 4.4.8 cpe:2.3:a:ssh:tectia_client:4.4.8:*:*:*:*:*:*:*
ssh tectia_client 4.4.9 cpe:2.3:a:ssh:tectia_client:4.4.9:*:*:*:*:*:*:*
ssh tectia_client 4.4.10 cpe:2.3:a:ssh:tectia_client:4.4.10:*:*:*:*:*:*:*
ssh tectia_client 4.4.11 cpe:2.3:a:ssh:tectia_client:4.4.11:*:*:*:*:*:*:*
ssh tectia_client 5.0.0 cpe:2.3:a:ssh:tectia_client:5.0.0:*:*:*:*:*:*:*
ssh tectia_client 5.0.0f cpe:2.3:a:ssh:tectia_client:5.0.0f:*:*:*:*:*:*:*
ssh tectia_client 5.0.1 cpe:2.3:a:ssh:tectia_client:5.0.1:*:*:*:*:*:*:*
ssh tectia_client 5.0.1f cpe:2.3:a:ssh:tectia_client:5.0.1f:*:*:*:*:*:*:*
ssh tectia_client 5.0.2 cpe:2.3:a:ssh:tectia_client:5.0.2:*:*:*:*:*:*:*
ssh tectia_client 5.0.2f cpe:2.3:a:ssh:tectia_client:5.0.2f:*:*:*:*:*:*:*
ssh tectia_client 5.0.3 cpe:2.3:a:ssh:tectia_client:5.0.3:*:*:*:*:*:*:*
ssh tectia_client 5.0.3f cpe:2.3:a:ssh:tectia_client:5.0.3f:*:*:*:*:*:*:*
ssh tectia_client 5.1.0 cpe:2.3:a:ssh:tectia_client:5.1.0:*:*:*:*:*:*:*
ssh tectia_client 5.1.1 cpe:2.3:a:ssh:tectia_client:5.1.1:*:*:*:*:*:*:*
ssh tectia_client 5.1.2 cpe:2.3:a:ssh:tectia_client:5.1.2:*:*:*:*:*:*:*
ssh tectia_client 5.1.3 cpe:2.3:a:ssh:tectia_client:5.1.3:*:*:*:*:*:*:*
ssh tectia_client 5.2.0 cpe:2.3:a:ssh:tectia_client:5.2.0:*:*:*:*:*:*:*
ssh tectia_client 5.2.1 cpe:2.3:a:ssh:tectia_client:5.2.1:*:*:*:*:*:*:*
ssh tectia_client 5.2.2 cpe:2.3:a:ssh:tectia_client:5.2.2:*:*:*:*:*:*:*
ssh tectia_client 5.2.3 cpe:2.3:a:ssh:tectia_client:5.2.3:*:*:*:*:*:*:*
ssh tectia_client 5.2.4 cpe:2.3:a:ssh:tectia_client:5.2.4:*:*:*:*:*:*:*
ssh tectia_client 5.3.0 cpe:2.3:a:ssh:tectia_client:5.3.0:*:*:*:*:*:*:*
ssh tectia_client 5.3.1 cpe:2.3:a:ssh:tectia_client:5.3.1:*:*:*:*:*:*:*
ssh tectia_client 5.3.2 cpe:2.3:a:ssh:tectia_client:5.3.2:*:*:*:*:*:*:*
ssh tectia_client 5.3.3 cpe:2.3:a:ssh:tectia_client:5.3.3:*:*:*:*:*:*:*
ssh tectia_client 5.3.5 cpe:2.3:a:ssh:tectia_client:5.3.5:*:*:*:*:*:*:*
ssh tectia_client 5.3.6 cpe:2.3:a:ssh:tectia_client:5.3.6:*:*:*:*:*:*:*
ssh tectia_client 5.3.7 cpe:2.3:a:ssh:tectia_client:5.3.7:*:*:*:*:*:*:*
ssh tectia_client 5.3.8 cpe:2.3:a:ssh:tectia_client:5.3.8:*:*:*:*:*:*:*
ssh tectia_client 6.0.0 cpe:2.3:a:ssh:tectia_client:6.0.0:*:*:*:*:*:*:*
ssh tectia_client 6.0.1 cpe:2.3:a:ssh:tectia_client:6.0.1:*:*:*:*:*:*:*
ssh tectia_client 6.0.2 cpe:2.3:a:ssh:tectia_client:6.0.2:*:*:*:*:*:*:*
ssh tectia_client 6.0.3 cpe:2.3:a:ssh:tectia_client:6.0.3:*:*:*:*:*:*:*
ssh tectia_client 6.0.4 cpe:2.3:a:ssh:tectia_client:6.0.4:*:*:*:*:*:*:*
ssh tectia_connector 4.0.7 cpe:2.3:a:ssh:tectia_connector:4.0.7:*:*:*:*:*:*:*
ssh tectia_connector 4.1.2 cpe:2.3:a:ssh:tectia_connector:4.1.2:*:*:*:*:*:*:*
ssh tectia_connector 4.1.3 cpe:2.3:a:ssh:tectia_connector:4.1.3:*:*:*:*:*:*:*
ssh tectia_connector 4.1.5 cpe:2.3:a:ssh:tectia_connector:4.1.5:*:*:*:*:*:*:*
ssh tectia_connector 4.2.0 cpe:2.3:a:ssh:tectia_connector:4.2.0:*:*:*:*:*:*:*
ssh tectia_connector 4.3.0 cpe:2.3:a:ssh:tectia_connector:4.3.0:*:*:*:*:*:*:*
ssh tectia_connector 4.3.4 cpe:2.3:a:ssh:tectia_connector:4.3.4:*:*:*:*:*:*:*
ssh tectia_connector 4.3.5 cpe:2.3:a:ssh:tectia_connector:4.3.5:*:*:*:*:*:*:*
ssh tectia_connector 4.4.0 cpe:2.3:a:ssh:tectia_connector:4.4.0:*:*:*:*:*:*:*
ssh tectia_connector 4.4.2 cpe:2.3:a:ssh:tectia_connector:4.4.2:*:*:*:*:*:*:*
ssh tectia_connector 4.4.4 cpe:2.3:a:ssh:tectia_connector:4.4.4:*:*:*:*:*:*:*
ssh tectia_connector 4.4.6 cpe:2.3:a:ssh:tectia_connector:4.4.6:*:*:*:*:*:*:*
ssh tectia_connector 4.4.7 cpe:2.3:a:ssh:tectia_connector:4.4.7:*:*:*:*:*:*:*
ssh tectia_connector 4.4.9 cpe:2.3:a:ssh:tectia_connector:4.4.9:*:*:*:*:*:*:*
ssh tectia_connector 4.4.10 cpe:2.3:a:ssh:tectia_connector:4.4.10:*:*:*:*:*:*:*
ssh tectia_connector 5.0.0 cpe:2.3:a:ssh:tectia_connector:5.0.0:*:*:*:*:*:*:*
ssh tectia_connector 5.0.1 cpe:2.3:a:ssh:tectia_connector:5.0.1:*:*:*:*:*:*:*
ssh tectia_connector 5.0.2 cpe:2.3:a:ssh:tectia_connector:5.0.2:*:*:*:*:*:*:*
ssh tectia_connector 5.0.3 cpe:2.3:a:ssh:tectia_connector:5.0.3:*:*:*:*:*:*:*

References for CVE-2008-5161

URL Tags
http://isc.sans.org/diary.html?storyid=5366
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705
http://lists.apple.com/archives/security-announce/2009/Nov/msg00000.html
http://marc.info/?l=bugtraq&m=125017764422557&w=2
http://openssh.org/txt/cbc.adv
http://osvdb.org/49872
http://osvdb.org/50035
http://osvdb.org/50036
http://rhn.redhat.com/errata/RHSA-2009-1287.html
http://secunia.com/advisories/32740 Vendor Advisory
http://secunia.com/advisories/32760 Vendor Advisory
http://secunia.com/advisories/32833
http://secunia.com/advisories/33121
http://secunia.com/advisories/33308
http://secunia.com/advisories/34857
http://secunia.com/advisories/36558
http://sunsolve.sun.com/search/document.do?assetkey=1-66-247186-1
http://support.apple.com/kb/HT3937
http://support.attachmate.com/techdocs/2398.html
http://support.avaya.com/elmodocs2/security/ASA-2008-503.htm
http://www.cpni.gov.uk/Docs/Vulnerability_Advisory_SSH.txt
http://www.kb.cert.org/vuls/id/958563 US Government Resource
http://www.rtpro.yamaha.co.jp/RT/FAQ/Security/CPNI957037.html
http://www.securityfocus.com/archive/1/498558/100/0/threaded
http://www.securityfocus.com/archive/1/498579/100/0/threaded
http://www.securityfocus.com/bid/32319
http://www.securitytracker.com/id?1021235
http://www.securitytracker.com/id?1021236
http://www.securitytracker.com/id?1021382
http://www.ssh.com/company/news/article/953/ Vendor Advisory
http://www.vupen.com/english/advisories/2008/3172
http://www.vupen.com/english/advisories/2008/3173
http://www.vupen.com/english/advisories/2008/3409
http://www.vupen.com/english/advisories/2009/1135
http://www.vupen.com/english/advisories/2009/3184
https://exchange.xforce.ibmcloud.com/vulnerabilities/46620
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05157667
https://kc.mcafee.com/corporate/index?page=content&id=SB10106
https://kc.mcafee.com/corporate/index?page=content&id=SB10163
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11279
cvelogic Threat Intelligence