CVE-2001-1476
CVE-2001-1476: SSH implementations prior to 2.0 using RC4 with the disallow NULL passwords option are vulnerable to remote session replay that can reveal parts of user passwords via modified attempts and the login message behavior. Root cause is a flaw in session handling under these conditions, ...