23 matches found
CVE-2023-48795
CVE-2023-48795 is referenced across several connected advisories, detailing affected packages and required upgrades. Astra Linux/CBL-Mariner entries note: podman (<5.6.1-2) needs upgrade, erlang (<25.2-1), libssh2 (<1.11.1-1), libssh (<0.10.6-1), terraform (<1.3.2-25), kubevirt (&l...
CVE-2001-1473
CVE-2001-1473 : The SSH-1 protocol vulnerability allows a remote attacker to perform man-in-the-middle and replay attacks by crafting a Session ID that matches the target’s Session ID but uses a weaker public key, enabling the attacker to compute the corresponding private key and masquerade as th...
CVE-2001-0361
CVE-2001-0361 affects SSH v1.5 implementations, notably OpenSSH up to 2.3.0, AppGate, and ssh-1 up to 1.2.31, when configured in certain ways. The issue enables a remote attacker to decrypt and/or alter traffic via a Bleichenbacher attack on PKCS#1 version 1.5. The connected PT security entries (...
CVE-2001-0572
CVE-2001-0572 concerns the SSH protocols 1 and 2 as implemented in OpenSSH and other packages. The connected documents confirm concrete details: the issue enables a remote attacker to sniff and disclose information such as password lengths, the authentication method (RSA/DSA), the number of autho...
CVE-2001-0144
Technical details about CVE-2001-0144 are not provided in the connected documents. The Initial Description notes an SSH1 CRC-32 overflow issue, but no vendor/version/exploit data is supplied here. Monitor for updates and disclose when more info becomes public.
CVE-2011-0766
CVE-2011-0766 affects the Crypto application (before 2.0.2.2) and SSH (before 2.0.5) as used by the Erlang/OTP SSH library before R14B03. The root cause is the use of predictable seeds based on the current time for the random number generator, enabling remote attackers to guess DSA host and SSH s...
CVE-2000-0143
Technical details for CVE-2000-0143 are not provided in the connected documents. The initial description notes local TCP redirection via sshd, but no vendor/versions/impact or fixes are specified beyond that. Monitor for updates.
CVE-2000-0992
CVE-2000-0992 is linked to a directory traversal vulnerability in scp for OpenSSH, with the SUSE page noting OpenSSH before 3.4p1 and that this may be a rediscovery of CVE-2000-0992. The connected documents do not provide full technical details (exact affected versions, root cause specifics, or a...
CVE-2000-0217
Technical details about CVE-2000-0217 are not provided in the connected documents. The supplied materials do not specify affected products/versions, root cause, or remediation. Monitor for updates in the available sources.
CVE-1999-0013
CVE-1999-0013 describes local privilege exposure where stolen credentials from SSH clients via the ssh-agent program can be used by other local users to access remote accounts belonging to the ssh-agent user. Connected sources corroborate the existence of this issue in OpenSSH-related contexts an...
CVE-2001-0471
CVE-2001-0471 applies to SSH1 (SSH server 1.2.30 or earlier). The issue is that SSH1 SSH Daemon does not log repeated login attempts, which could allow remote attackers to carry out brute-force-style account compromises without detection. Multiple connected sources (NVD/Nessus/OpenVAS entries) co...
CVE-2000-0575
SSH 1.2.27 with Kerberos authentication stores Kerberos tickets in a file created in the user’s current directory, which could allow an attacker to sniff the ticket cache if the home directory is on NFS. The issue is discussed in CVE-2000-0575 and related sources; a remediation is to upgrade to S...
CVE-2002-1715
Technical details about CVE-2002-1715 are not publicly available in the provided connected documents. The initial description notes local privilege escalation via a world-writable directory, but no vendor/version/patch specifics are present here; monitor for updates.
CVE-1999-0787
The CVE describes a local-privilege issue in ssh-agent: an AF_UNIX socket used for key forwarding is created by ssh-agent, and the client’s connection may bypass proper permissions checks, enabling a local attacker to establish sessions as the victim user. The Red Hat entry reiterates the SSH-age...
CVE-2001-0259
The connected sources confirm a vulnerability in SSH Communications Security SSH versions 1.2.27–1.2.30 when Secure-RPC is enabled. A local attacker can cause the system to recover the SUN-DES-1 magic phrase generated for another user, which can then decrypt that user’s private key file. This wea...
CVE-2001-1469
The CVE-2001-1469 entry concerns the RC4-based use in SSH1, where remote attackers can modify messages without detection by XOR’ing the original message CRC with the CRC of a mask of the modified bits. Affected component is the RC4 stream cipher implementation within SSH1; impact is partial integ...
CVE-2001-1475
SSH before 2.0, when using RC4 and password authentication, is vulnerable to replaying messages until a new server key is generated. The affected component is the SSH protocol implementation prior to 2.0, with the underlying issue arising from RC4-based session handling that allows remote attacke...
CVE-1999-0398
CVE-1999-0398 concerns SSH on Linux, where in some instances of SSH 1.2.27 and 2.0.11, logins from users with expired accounts are allowed. The linked PT Security entry confirms affected versions and recommends upgrading to a fixed version, though no specific patched version is stated. No exploit...
CVE-2001-1474
CVE-2001-1474 concerns SSH prior to version 2.0, where host key checking is disabled when connecting to localhost. This creates a vulnerability condition that can be exploited by poisoning the client’s DNS cache to silently redirect connections to localhost. The description in the connected docum...
CVE-1999-0248
The CVE-1999-0248 entry concerns sshd 1.2.17, where a race condition in the authentication agent mechanism can allow an attacker to steal another user’s credentials. The vulnerability is documented across multiple sources (NVD, Red Hat, CVE List, EUVD) without providing explicit exploit code or c...
CVE-1999-0310
HP-UX SSH 1.2.25 is vulnerable (CVE-1999-0310): it allows access to new user accounts. This is confirmed across NVD/Red Hat/PT-Security records. The exact root cause isn’t spelled out in the available documents, but the impact aligns with elevated access risk (networked). Remediation: update to a...
CVE-2001-1470
The CVE-2001-1470 entry describes a vulnerability in the IDEA cipher as implemented by SSH1. The issue is that the final block is not protected against modification, allowing a remote attacker to alter the message and adjust its CRC to match the changes, without detection. The descriptions across...
CVE-2001-1476
CVE-2001-1476: SSH implementations prior to 2.0 using RC4 with the disallow NULL passwords option are vulnerable to remote session replay that can reveal parts of user passwords via modified attempts and the login message behavior. Root cause is a flaw in session handling under these conditions, ...