Threat Encyclopedia



This indicates an attack attempt against an Information Disclosure vulnerability in OpenSSH Client.
The vulnerability is caused by an error when the vulnerable software connects with a malicious ssh server. A remote attacker can exploit this to gain private keys from vulnerable clients.

affected-products-logoAffected Products

OpenSSH 5.x, 6.x, and 7.x before 7.1p2


Information Disclosure: Remote attackers can gain sensitive information from vulnerable systems.

recomended-action-logoRecommended Actions

Apply the most recent upgrade or patch from the vendor:

CVE References

CVE-2016-0778 CVE-2016-0777