Lucene search
HistoryMar 12, 2001 - 5:00 a.m.
CVE-2001-0144
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
7.3 High
AI Score
Confidence
High
0.122 Low
EPSS
Percentile
95.4%
CORE SDI SSH1 CRC-32 compensation attack detector allows remote attackers to execute arbitrary commands on an SSH server or client via an integer overflow.
Affected configurations
Node
openbsdopensshMatch1.2.2
ORopenbsdopensshMatch1.2.3
ORopenbsdopensshMatch2.1
ORopenbsdopensshMatch2.1.1
ORopenbsdopensshMatch2.2
ORsshsshMatch1.2.24
ORsshsshMatch1.2.25
ORsshsshMatch1.2.26
ORsshsshMatch1.2.27
ORsshsshMatch1.2.28
ORsshsshMatch1.2.29
ORsshsshMatch1.2.30
ORsshsshMatch1.2.31
Related
securityvulns
securityvulns
Netscreen SSH1 CRC32 Compensation Denial of service
2002-11-02 00:00:00
[CORE SDI ADVISORY] SSH1 CRC-32 compensation attack detector vulnerability
2001-02-10 00:00:00
BindView advisory: sshd remote root (bug in deattack.c)
2001-02-10 00:00:00
nessus
nessus
SSH CRC-32 Compensation Attack Remote Overflow
2001-02-09 00:00:00
Debian DSA-086-1 : ssh-nonfree - remote root exploit
2004-09-29 00:00:00
Debian DSA-027-1 : OpenSSH - remote exploit
2004-09-29 00:00:00
cert
cert
SSH CRC32 attack detection code contains remote integer overflow
2001-10-24 00:00:00
cve
cve
cvelist
cvelist
nvd
nvd
prion
prion
Design/Logic Flaw
2007-09-04 22:17:00
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
7.3 High
AI Score
Confidence
High
0.122 Low
EPSS
Percentile
95.4%
Related for NVD:CVE-2001-0144