4 matches found
SunSSH < 1.1.1 / 1.3 CBC Plaintext Disclosure
The version of SunSSH running on the remote host has an information disclosure vulnerability. A design flaw in the SSH specification could allow a man-in-the-middle attacker to recover up to 32 bits of plaintext from an SSH-protected connection in the standard configuration. An attacker could...
OpenSSH Client Unauthorized Remote Forwarding
The remote host is running OpenSSH SSH client before 2.3.0. SPDX-FileCopyrightText: 2003 Xue Yong Zhi Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:openbsd:openssh";...
CVE-2000-1169
OpenSSH client prior to 2.3.0 can fail to disable X11 or agent forwarding, enabling a malicious SSH server to access the X11 display and sniff events or to access the ssh-agent. Affected component is the SSH client’s forwarding behavior; root cause is improper disabling of X11/agent forwarding. T...
CVE-2000-1169
OpenSSH SSH client before 2.3.0 does not properly disable X11 or agent forwarding, which could allow a malicious SSH server to gain access to the X11 display and sniff X11 events, or gain access to the ssh-agent...