VDB
DSA-3626-1
DSA-3626-1
PUBLISHED
openssh - security update
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian:8 | openssh | 0, 1:6.7p1-5, 1:6.7p1-5+deb8u1 |
Exploit Intelligence
- This project explores whether modern OpenSSH reveals valid usernames through subtle response or timing differences. CVE-2016-6210 user enumeration investigation ( Welch's t-test, Cohen's d, and detection engineering ) on a controlled lab on Ubuntu 22.04.5 LTS, it also examines the traces such attempts leave behind and how they can be detected.. (github-poc)
- This project explores whether modern OpenSSH reveals valid usernames through subtle response or timing differences. CVE-2016-6210 user enumeration investigation ( Welch's t-test, Cohen's d, and detection engineering ) on a controlled lab on Ubuntu 22.04.5 LTS, it also examines the traces such attempts leave behind and how they can be detected.. (github-poc-repo)
- OpenSSH Username Enumeration - CVE-2016-6210 (github-poc-repo)
- samh4cks/CVE-2016-6210-OpenSSH-User-Enumeration (github-poc-repo)
- Custom exploit written for enumerating usernames as per CVE-2016-6210 (github-poc-repo)
- User name enumeration against SSH daemons affected by CVE-2016-6210. (github-poc-repo)
- nicoleman0/CVE-2016-6210-OpenSSHd-7.2p2 (github-poc-repo)
- PoC of cve-2016-6210 (github-poc-repo)
- CVE-2016-6210/Openssh 7.2p2 side channel info disclosure POC (github-poc-repo)
- CVE-2016-6210/Openssh 7.2p2 side channel info disclosure POC (github-poc)
…and 7 more exploits
Timeline
- Jul 24, 2016 CVE Published
- Mar 9, 2026 CVE Updated