CVE-2001-0553

Опубликовано: 14 авг. 2001

Источник: nvd

CVSS2: 7.2

EPSS Низкий

Описание

SSH Secure Shell 3.0.0 on Unix systems does not properly perform password authentication to the sshd2 daemon, which allows local users to gain access to accounts with short password fields, such as locked accounts that use "NP" in the password field.

Ссылки

http://archives.neohapsis.com/archives/bugtraq/2001-07/0486.html
Exploit
Patch
Vendor Advisory
http://www.ciac.org/ciac/bulletins/l-121.shtml
http://www.kb.cert.org/vuls/id/737451
US Government Resource
http://www.osvdb.org/586
http://www.securityfocus.com/bid/3078
http://www.ssh.com/products/ssh/exploit.cfm
https://exchange.xforce.ibmcloud.com/vulnerabilities/6868
http://archives.neohapsis.com/archives/bugtraq/2001-07/0486.html
Exploit
Patch
Vendor Advisory
http://www.ciac.org/ciac/bulletins/l-121.shtml
http://www.kb.cert.org/vuls/id/737451
US Government Resource
http://www.osvdb.org/586
http://www.securityfocus.com/bid/3078
http://www.ssh.com/products/ssh/exploit.cfm
https://exchange.xforce.ibmcloud.com/vulnerabilities/6868

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:ssh:secure_shell:3.0.0:*:*:*:*:*:*:*

EPSS

Процентиль: 57%

0.00346

Низкий

7.2 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-4jrf-5jjq-9v28

github

почти 4 года назад