Lucene search

K

67 matches found

CVE
CVE
added 2003/09/22 4:0 a.m.686 views

CVE-2003-0693

A "buffer management error" in buffer_append_space of buffer.c for OpenSSH before 3.7 may allow remote attackers to execute arbitrary code by causing an incorrect amount of memory to be freed and corrupting the heap, a different vulnerability than CVE-2003-0695.

10CVSS9.6AI score0.21644EPSS
CVE
CVE
added 2014/03/18 5:18 a.m.565 views

CVE-2014-2532

sshd in OpenSSH before 6.6 does not properly support wildcards on AcceptEnv lines in sshd_config, which allows remote attackers to bypass intended environment restrictions by using a substring located before a wildcard character.

5.8CVSS5.2AI score0.00233EPSS
CVE
CVE
added 2008/09/18 3:4 p.m.460 views

CVE-2008-4109

A certain Debian patch for OpenSSH before 4.3p2-9etch3 on etch; before 4.6p1-1 on sid and lenny; and on other distributions such as SUSE uses functions that are not async-signal-safe in the signal handler for login timeouts, which allows remote attackers to cause a denial of service (connection slo...

5CVSS7.8AI score0.01773EPSS
CVE
CVE
added 2006/11/08 8:7 p.m.321 views

CVE-2006-5794

Unspecified vulnerability in the sshd Privilege Separation Monitor in OpenSSH before 4.5 causes weaker verification that authentication has been successful, which might allow attackers to bypass authentication. NOTE: as of 20061108, it is believed that this issue is only exploitable by leveraging v...

7.5CVSS8.7AI score0.03358EPSS
CVE
CVE
added 2024/07/02 6:15 p.m.280 views

CVE-2024-39894

OpenSSH 9.5 through 9.7 before 9.8 sometimes allows timing attacks against echo-off password entry (e.g., for su and Sudo) because of an ObscureKeystrokeTiming logic error. Similarly, other timing attacks against keystroke entry could occur.

7.5CVSS7.1AI score0.02136EPSS
CVE
CVE
added 2003/04/02 5:0 a.m.242 views

CVE-2002-0639

Integer overflow in sshd in OpenSSH 2.9.9 through 3.3 allows remote attackers to execute arbitrary code during challenge response authentication (ChallengeResponseAuthentication) when OpenSSH is using SKEY or BSD_AUTH authentication.

10CVSS10AI score0.30289EPSS
CVE
CVE
added 2002/06/25 4:0 a.m.210 views

CVE-2002-0083

Off-by-one error in the channel code of OpenSSH 2.0 through 3.0.2 allows local users or remote malicious servers to gain privileges.

10CVSS9.1AI score0.03283EPSS
CVE
CVE
added 2005/02/20 5:0 a.m.205 views

CVE-2004-1653

The default configuration for OpenSSH enables AllowTcpForwarding, which could allow remote authenticated users to perform a port bounce, when configured with an anonymous access program such as AnonCVS.

6.4CVSS9.1AI score0.00511EPSS
CVE
CVE
added 2003/05/12 4:0 a.m.203 views

CVE-2003-0190

OpenSSH-portable (OpenSSH) 3.6.1p1 and earlier with PAM support enabled immediately sends an error message when a user does not exist, which allows remote attackers to determine valid usernames via a timing attack.

5CVSS6.3AI score0.14685EPSS
CVE
CVE
added 2003/10/06 4:0 a.m.125 views

CVE-2003-0695

Multiple "buffer management errors" in OpenSSH before 3.7.1 may allow attackers to cause a denial of service or execute arbitrary code using (1) buffer_init in buffer.c, (2) buffer_free in buffer.c, or (3) a separate function in channels.c, a different vulnerability than CVE-2003-0693.

7.5CVSS9.6AI score0.21644EPSS
CVE
CVE
added 2003/10/06 4:0 a.m.119 views

CVE-2003-0682

"Memory bugs" in OpenSSH 3.7.1 and earlier, with unknown impact, a different set of vulnerabilities than CVE-2003-0693 and CVE-2003-0695.

7.5CVSS9.7AI score0.21644EPSS
CVE
CVE
added 2002/03/09 5:0 a.m.73 views

CVE-2001-0529

OpenSSH version 2.9 and earlier, with X forwarding enabled, allows a local attacker to delete any file named 'cookies' via a symlink attack.

7.2CVSS9.1AI score0.00132EPSS
CVE
CVE
added 2002/06/25 4:0 a.m.73 views

CVE-2001-0872

OpenSSH 3.0.1 and earlier with UseLogin enabled does not properly cleanse critical environment variables such as LD_PRELOAD, which allows local users to gain root privileges.

7.2CVSS9.1AI score0.00207EPSS
CVE
CVE
added 2000/02/16 5:0 a.m.69 views

CVE-2000-0143

The SSH protocol server sshd allows local users without shell access to redirect a TCP connection through a service that uses the standard system password database for authentication, such as POP or FTP.

4.6CVSS6.6AI score0.00073EPSS
CVE
CVE
added 2002/03/09 5:0 a.m.68 views

CVE-2001-0816

OpenSSH before 2.9.9, when running sftp using sftp-server and using restricted keypairs, allows remote authenticated users to bypass authorized_keys2 command= restrictions using sftp commands.

7.5CVSS9.1AI score0.00233EPSS
CVE
CVE
added 2003/04/02 5:0 a.m.60 views

CVE-2001-1380

OpenSSH before 2.9.9, while using keypairs and multiple keys of different types in the ~/.ssh/authorized_keys2 file, may not properly handle the "from" option associated with a key, which could allow remote attackers to login from unauthorized IP addresses.

7.5CVSS9.3AI score0.04582EPSS
CVE
CVE
added 2003/04/02 5:0 a.m.60 views

CVE-2001-1382

The "echo simulation" traffic analysis countermeasure in OpenSSH before 2.9.9p2 sends an additional echo packet after the password and carriage return is entered, which could allow remote attackers to determine that the countermeasure is being used.

5CVSS9.5AI score0.00732EPSS
Total number of security vulnerabilities67