CVE-2002-1357

Multiple SSH2 servers and clients do not properly handle packets or data elements with incorrect length specifiers, which may allow remote attackers to cause a denial of service or possibly execute arbitrary code, as demonstrated by the SSHredder SSH protocol test suite...

Mulbiple bugs in different SSH2 realizations

Differeng bugs on malformed packets processing during keys exchange...

CVE-2002-1358

CVE-2002-1358 affects multiple SSH2 servers/clients that fail to handle lists with empty elements or empty strings. The underlying issue can lead to a denial of service and, in some contexts, arbitrary code execution, as demonstrated by the SSHredder test suite. Public references (NVD/NVD-derived...

CVE-2002-1360

Summary (CVE-2002-1360) Multiple SSH2 servers/clients fail to properly handle strings containing null characters when the string length is dictated by a length field. This can lead to denial of service and, in some cases, potential arbitrary code execution as demonstrated by the SSHredder test su...

CVE-2002-1357

CVE-2002-1357 affects multiple SSH2 servers/clients and arises from improper handling of packets/data elements with incorrect length specifiers. This can lead to denial of service or possibly arbitrary code execution, as demonstrated by the SSHredder SSH protocol test suite. Connected scanners no...

CVE-2002-1358

Multiple SSH2 servers and clients do not properly handle lists with empty elements or strings, which may allow remote attackers to cause a denial of service or possibly execute arbitrary code, as demonstrated by the SSHredder SSH protocol test suite...

CVE-2002-1360

Multiple SSH2 servers and clients do not properly handle strings with null characters in them when the string length is specified by a length field, which could allow remote attackers to cause a denial of service or possibly execute arbitrary code due to interactions with the use of null-terminat...

CVE-2002-1359

Multiple SSH2 servers and clients do not properly handle large packets or large fields, which may allow remote attackers to cause a denial of service or possibly execute arbitrary code via buffer overflow attacks, as demonstrated by the SSHredder SSH protocol test suite...

CVE-2002-1357

Multiple SSH2 servers and clients do not properly handle packets or data elements with incorrect length specifiers, which may allow remote attackers to cause a denial of service or possibly execute arbitrary code, as demonstrated by the SSHredder SSH protocol test suite...

CVE-2002-1358

Multiple SSH2 servers and clients do not properly handle lists with empty elements or strings, which may allow remote attackers to cause a denial of service or possibly execute arbitrary code, as demonstrated by the SSHredder SSH protocol test suite...

CVE-2002-1360

Multiple SSH2 servers and clients do not properly handle strings with null characters in them when the string length is specified by a length field, which could allow remote attackers to cause a denial of service or possibly execute arbitrary code due to interactions with the use of null-terminat...

CVE-2002-1359

Multiple SSH2 servers and clients do not properly handle large packets or large fields, which may allow remote attackers to cause a denial of service or possibly execute arbitrary code via buffer overflow attacks, as demonstrated by the SSHredder SSH protocol test suite...

CVE-2002-1357

Multiple SSH2 servers and clients do not properly handle packets or data elements with incorrect length specifiers, which may allow remote attackers to cause a denial of service or possibly execute arbitrary code, as demonstrated by the SSHredder SSH protocol test suite...

CVE-2002-1359

CVE-2002-1359 involves a buffer overflow in multiple SSH2 implementations, notably the PuTTY SSH client (affected versions: <= 0.53). The issue arises when handling large packets/fields during SSH, as demonstrated by the SSHredder test suite, potentially enabling remote code execution or a den...

R7-0009: Vulnerabilities in SSH2 Implementations from Multiple Vendors

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Rapid 7, Inc. Security Advisory Visit http://www.rapid7.com/ to download NeXposetm, our advanced vulnerability scanner. Linux and Windows 2000 versions are available now! Rapid 7 Advisory R7-0009 Vulnerabilities in SSH2 Implementations from Multiple...

Weak CRC allows RC4 encrypted SSH1 packets to be modified without notice

Overview There is an information integrity vulnerability in the SSH1 protocol that allows RC4 encrypted packets to be modified without notice. Description Preconditions: Client has requested RC4 and server supports it. Compression is disabled. When using the RC4 stream cipher, SSH1 uses a cyclic...

ssh2-remote-forward.txt

Date: Wed, 30 Dec 1998 00:04:47 +1100 From: Darren Reed To: [email protected] Subject: ssh2 security problem and patch fwd This just came across the ssh list...I've deleted the patch for brievity original length was some 2900 lines. From [email protected] Tue Dec 29 23:13:34 EDT 1998 From:...