CVE-2000-0992

Опубликовано: 19 дек. 2000

Источник: nvd

CVSS2: 5

EPSS Низкий

Описание

Directory traversal vulnerability in scp in sshd 1.2.xx allows a remote malicious scp server to overwrite arbitrary files via a .. (dot dot) attack.

Ссылки

http://archives.neohapsis.com/archives/bugtraq/2000-09/0359.html
Exploit
Vendor Advisory
http://frontal2.mandriva.com/security/advisories?name=MDKSA-2000:057
http://www.securityfocus.com/bid/1742
Exploit
Patch
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/5312
http://archives.neohapsis.com/archives/bugtraq/2000-09/0359.html
Exploit
Vendor Advisory
http://frontal2.mandriva.com/security/advisories?name=MDKSA-2000:057
http://www.securityfocus.com/bid/1742
Exploit
Patch
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/5312

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:openbsd:openssh:1.2:*:*:*:*:*:*:*

cpe:2.3:a:openbsd:openssh:1.2.3:*:*:*:*:*:*:*

cpe:2.3:a:ssh:ssh:1.2.14:*:*:*:*:*:*:*

cpe:2.3:a:ssh:ssh:1.2.15:*:*:*:*:*:*:*

cpe:2.3:a:ssh:ssh:1.2.16:*:*:*:*:*:*:*

cpe:2.3:a:ssh:ssh:1.2.17:*:*:*:*:*:*:*

cpe:2.3:a:ssh:ssh:1.2.18:*:*:*:*:*:*:*

cpe:2.3:a:ssh:ssh:1.2.19:*:*:*:*:*:*:*

cpe:2.3:a:ssh:ssh:1.2.20:*:*:*:*:*:*:*

cpe:2.3:a:ssh:ssh:1.2.21:*:*:*:*:*:*:*

cpe:2.3:a:ssh:ssh:1.2.22:*:*:*:*:*:*:*

cpe:2.3:a:ssh:ssh:1.2.23:*:*:*:*:*:*:*

cpe:2.3:a:ssh:ssh:1.2.24:*:*:*:*:*:*:*

cpe:2.3:a:ssh:ssh:1.2.25:*:*:*:*:*:*:*

cpe:2.3:a:ssh:ssh:1.2.26:*:*:*:*:*:*:*

cpe:2.3:a:ssh:ssh:1.2.27:*:*:*:*:*:*:*

cpe:2.3:a:ssh:ssh:1.2.28:*:*:*:*:*:*:*

cpe:2.3:a:ssh:ssh:1.2.29:*:*:*:*:*:*:*

cpe:2.3:a:ssh:ssh:1.2.30:*:*:*:*:*:*:*

cpe:2.3:a:ssh:ssh:1.2.31:*:*:*:*:*:*:*

EPSS

Процентиль: 85%

0.02826

Низкий

5 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

CVE-2000-0992

debian

больше 24 лет назад

Directory traversal vulnerability in scp in sshd 1.2.xx allows a remot ...

GHSA-vx4v-hfcq-7vw7

github

около 3 лет назад