Lucene search

[email protected]CVE-2002-1646

HistoryDec 31, 2002 - 5:00 a.m.

CVE-2002-1646

2002-12-3105:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2002-1646

ssh

secure shell

servers

remote attackers

authentication

nvd

7.2 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.016 Low

EPSS

Percentile

87.2%

JSON

SSH Secure Shell for Servers 3.0.0 to 3.1.1 allows remote attackers to override the AllowedAuthentications configuration and use less secure authentication schemes (e.g. password) than configured for the server.

CPENameOperatorVersion
ssh:secure_shell_for_serversssh secure shell for serverseq3.1.1
ssh:secure_shell_for_serversssh secure shell for serverseq3.1
ssh:secure_shell_for_serversssh secure shell for serverseq3.0
ssh:secure_shell_for_serversssh secure shell for serverseq3.0.1

CPE	Name	Operator	Version
ssh:secure_shell_for_servers	ssh secure shell for servers	eq	3.1.1
ssh:secure_shell_for_servers	ssh secure shell for servers	eq	3.1
ssh:secure_shell_for_servers	ssh secure shell for servers	eq	3.0
ssh:secure_shell_for_servers	ssh secure shell for servers	eq	3.0.1

References

archives.neohapsis.com/archives/bugtraq/2002-05/0204.html

www.ciac.org/ciac/bulletins/m-081.shtml

www.kb.cert.org/vuls/id/341187

www.securityfocus.com/bid/4810

www.ssh.com/company/newsroom/article/201/

www.ssh.com/products/ssh/advisories/authentication.cfm

exchange.xforce.ibmcloud.com/vulnerabilities/9163

7.2 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.016 Low

EPSS

Percentile

87.2%

JSON

Related for CVE-2002-1646

nessus1