Lucene search
FortiGuard LabsFG-IR-19-292HistoryJun 26, 2020 - 12:00 a.m.
CVE-2004-1653 SSH port forwarding exposes unprotected internal services
2020-06-2600:00:00
FortiGuard Labs
www.fortiguard.com
28
0.01 Low
EPSS
Percentile
84.1%
An improper access control vulnerability in the admin SSH console of multiple products may allow an authenticated user to access internal only system services via using SSH local port forwarding. A successful attack needs an authenticated admin SSH user to set up a port bounce to product internal only services via SSH local port forwarding; potential consequences are information disclosure and/or privilege escalation.
Related
cvelist
cvelist
CVE-2004-1653
2005-02-20 05:00:00
nvd
nvd
CVE-2004-1653
2004-08-31 04:00:00
threatpost
threatpost
Old SSH Vulnerability at Center of Credential-Stuffing Attacks
2016-10-13 11:27:58
debiancve
debiancve
CVE-2004-1653
2005-02-20 05:00:00
openvas
openvas
OpenBSD OpenSSH 3.9 Port Bounce Vulnerability
2016-10-25 00:00:00
f5
f5
K40663742 : OpenSSH vulnerability CVE-2004-1653
2020-06-16 00:00:00
redhatcve
redhatcve
CVE-2004-1653
2015-10-30 09:17:36
thn
thn
12-Year-Old SSH Bug Exposes More than 2 Million IoT Devices
2016-10-13 21:00:00
nessus
nessus
OpenSSH >= 2.3.0 AllowTcpForwarding Port Bouncing
2011-12-01 00:00:00
SunSSH < 1.1.1 / 1.3 CBC Plaintext Disclosure
2011-08-29 00:00:00
cve
cve
CVE-2004-1653
2005-02-20 05:00:00