OpenSSH CBC Mode Information Disclosure Vulnerability

Summary
The host is installed with OpenSSH and is prone to information disclosure vulnerability.
Impact
Successful exploits will allow attackers to obtain four bytes of plaintext from an encrypted session. Impact Level: Application
Solution
Upgrade to higher version http://www.openssh.com/portable.html
Insight
The flaw is due to the improper handling of errors within an SSH session encrypted with a block cipher algorithm in the Cipher-Block Chaining 'CBC' mode.
Affected
Versions prior to OpenSSH 5.2 are vulnerable. Various versions of SSH Tectia are also affected.
References