Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

openbsd openssh 3.7.1p2 vulnerabilities and exploits

(subscribe to this query)
5
CVSSv2
CVE-2004-2069
sshd.c in OpenSSH 3.6.1p2 and 3.7.1p2 and possibly other versions, when using privilege separation, does not properly signal the non-privileged process when a session has been terminated after exceeding the LoginGraceTime setting, which leaves the connection open and allows remot...
Openbsd Openssh 3.6.1p2Openbsd Openssh 3.7.1p2
1.2
CVSSv2
CVE-2005-2666
SSH, as implemented in OpenSSH prior to 4.0 and possibly other implementations, stores hostnames, IP addresses, and keys in plaintext in the known_hosts file, which makes it easier for an attacker that has compromised an SSH user's account to generate a list of additional ta...
Openbsd Openssh 3.8Openbsd Openssh 3.8.1p1Openbsd Openssh 3.1Openbsd Openssh 3.0.2p1Openbsd Openssh 3.8.1Openbsd Openssh 3.7.1p2Openbsd Openssh 3.2.3p1Openbsd Openssh 3.1p1Openbsd Openssh 3.6.1p2Openbsd Openssh 3.9Openbsd Openssh 3.0Openbsd Openssh 3.2Openbsd Openssh 3.6Openbsd Openssh 3.7Openbsd Openssh 3.5p1Openbsd Openssh 3.0.1p1Openbsd Openssh 3.3Openbsd Openssh 3.2.2p1Openbsd Openssh 3.9.1p1Openbsd Openssh 3.0.2Openbsd Openssh 3.4p1Openbsd Openssh 3.6.1p1
4.6
CVSSv2
CVE-2006-0225
scp in OpenSSH 4.2p1 allows malicious users to execute arbitrary commands via filenames that contain shell metacharacters or spaces, which are expanded twice.
Openbsd Openssh 3.0p1Openbsd Openssh 3.1Openbsd Openssh 3.4Openbsd Openssh 3.4p1Openbsd Openssh 3.7Openbsd Openssh 3.7.1Openbsd Openssh 3.7.1p2Openbsd Openssh 4.0p1Openbsd Openssh 4.1p1Openbsd Openssh 3.0.2Openbsd Openssh 3.0.2p1Openbsd Openssh 3.3Openbsd Openssh 3.3p1Openbsd Openssh 3.6.1p1Openbsd Openssh 3.6.1p2Openbsd Openssh 3.9.1Openbsd Openssh 3.9.1p1Openbsd Openssh 3.0Openbsd Openssh 3.1p1Openbsd Openssh 3.2Openbsd Openssh 3.5Openbsd Openssh 3.5p1
5
CVSSv2
CVE-2005-2798
sshd in OpenSSH prior to 4.2, when GSSAPIDelegateCredentials is enabled, allows GSSAPI credentials to be delegated to clients who log in using non-GSSAPI methods, which could cause those credentials to be exposed to untrusted users or hosts.
Openbsd Openssh 3.1p1Openbsd Openssh 3.2Openbsd Openssh 3.5Openbsd Openssh 3.5p1Openbsd Openssh 3.7.1p2Openbsd Openssh 3.8Openbsd Openssh 3.8.1Openbsd Openssh 3.0Openbsd Openssh 3.0.1Openbsd Openssh 3.0.1p1Openbsd Openssh 3.2.2p1Openbsd Openssh 3.2.3p1Openbsd Openssh 3.6Openbsd Openssh 3.6.1Openbsd Openssh 3.8.1p1Openbsd Openssh 3.9Openbsd Openssh 3.0p1Openbsd Openssh 3.1Openbsd Openssh 3.4Openbsd Openssh 3.4p1Openbsd Openssh 3.7Openbsd Openssh 3.7.1
5
CVSSv2
CVE-2006-5052
Unspecified vulnerability in portable OpenSSH prior to 4.4, when running on some platforms, allows remote malicious users to determine the validity of usernames via unknown vectors involving a GSSAPI "authentication abort."
Openbsd Openssh 1.2.1Openbsd Openssh 1.2.2Openbsd Openssh 2.5Openbsd Openssh 2.5.1Openbsd Openssh 3.0Openbsd Openssh 3.0.1Openbsd Openssh 3.2.2Openbsd Openssh 3.2.2p1Openbsd Openssh 3.5p1Openbsd Openssh 3.6Openbsd Openssh 3.7.1p2Openbsd Openssh 3.8Openbsd Openssh 4.1p1Openbsd Openssh 4.2Openbsd Openssh 1.2.27Openbsd Openssh 1.2.3Openbsd Openssh 2.5.2Openbsd Openssh 2.9Openbsd Openssh 3.0.1p1Openbsd Openssh 3.0.2Openbsd Openssh 3.2.3p1Openbsd Openssh 3.3
7.8
CVSSv2
CVE-2006-4924
sshd in OpenSSH prior to 4.4, when using the version 1 SSH protocol, allows remote malicious users to cause a denial of service (CPU consumption) via an SSH packet that contains duplicate blocks, which is not properly handled by the CRC compensation attack detector.
Openbsd Openssh 1.2.1Openbsd Openssh 1.2.2Openbsd Openssh 1.2.27Openbsd Openssh 2.5.1Openbsd Openssh 2.5.2Openbsd Openssh 3.0.1Openbsd Openssh 3.0.1p1Openbsd Openssh 3.2.2Openbsd Openssh 3.2.2p1Openbsd Openssh 3.2.3p1Openbsd Openssh 3.6Openbsd Openssh 3.6.1Openbsd Openssh 3.8Openbsd Openssh 3.8.1Openbsd Openssh 4.2Openbsd Openssh 4.2p1Openbsd Openssh 1.2Openbsd Openssh 2.3Openbsd Openssh 2.5Openbsd Openssh 2.9p2Openbsd Openssh 3.0Openbsd Openssh 3.1p1
3.5
CVSSv2
CVE-2011-5000
The ssh_gssapi_parse_ename function in gss-serv.c in OpenSSH 5.8 and previous versions, when gssapi-with-mic authentication is enabled, allows remote authenticated users to cause a denial of service (memory consumption) via a large value in a certain length field. NOTE: there may...
Openbsd Openssh 5.5Openbsd Openssh 5.4Openbsd Openssh 4.6Openbsd Openssh 4.5Openbsd Openssh 4.0Openbsd Openssh 4.1Openbsd Openssh 3.8.1p1Openbsd Openssh 3.9Openbsd Openssh 3.0p1Openbsd Openssh 3.0.2Openbsd Openssh 3.5p1Openbsd Openssh 3.6Openbsd Openssh 3.2.2Openbsd Openssh 3.2.2p1Openbsd Openssh 1.2.3Openbsd Openssh 1.2.1Openbsd OpensshOpenbsd Openssh 5.1Openbsd Openssh 5.0Openbsd Openssh 4.1p1Openbsd Openssh 4.3p2Openbsd Openssh 4.4
5
CVSSv2
CVE-2007-2243
OpenSSH 4.6 and previous versions, when ChallengeResponseAuthentication is enabled, allows remote malicious users to determine the existence of user accounts by attempting to authenticate via S/KEY, which displays a different response if the user account exists, a similar issue t...
Openbsd Openssh 2.1Openbsd Openssh 2.1.1Openbsd Openssh 2.9.9Openbsd Openssh 2.9.9p2Openbsd Openssh 3.0p1Openbsd Openssh 3.1Openbsd Openssh 3.3p1Openbsd Openssh 3.4Openbsd Openssh 3.6.1p2Openbsd Openssh 3.7Openbsd Openssh 3.9.1Openbsd Openssh 3.9.1p1Openbsd Openssh 4.3Openbsd Openssh 4.3p1Openbsd Openssh 1.2.27Openbsd Openssh 1.2.3Openbsd Openssh 2.5.2Openbsd Openssh 2.9Openbsd Openssh 3.0.2Openbsd Openssh 3.0.2p1Openbsd Openssh 3.2.3p1Openbsd Openssh 3.3
1.2
CVSSv2
CVE-2008-3259
OpenSSH prior to 5.1 sets the SO_REUSEADDR socket option when the X11UseLocalhost configuration setting is disabled, which allows local users on some platforms to hijack the X11 forwarding port via a bind to a single IP address, as demonstrated on the HP-UX platform.
Openbsd Openssh 1.2.3Openbsd Openssh 1.3Openbsd Openssh 2.3.1Openbsd Openssh 2.5Openbsd Openssh 2.9p2Openbsd Openssh 3.0Openbsd Openssh 3.1p1Openbsd Openssh 3.2Openbsd Openssh 3.5Openbsd Openssh 3.5p1Openbsd Openssh 3.7.1p1Openbsd Openssh 3.7.1p2Openbsd Openssh 4.0Openbsd Openssh 4.0p1Openbsd Openssh 4.4Openbsd Openssh 4.4p1Openbsd Openssh 1.5Openbsd Openssh 1.5.7Openbsd Openssh 2.5.1Openbsd Openssh 2.5.2Openbsd Openssh 3.0.1Openbsd Openssh 3.0.1p1
5
CVSSv2
CVE-2008-4109
A certain Debian patch for OpenSSH prior to 4.3p2-9etch3 on etch; prior to 4.6p1-1 on sid and lenny; and on other distributions such as SUSE uses functions that are not async-signal-safe in the signal handler for login timeouts, which allows remote malicious users to cause a deni...
Openbsd Openssh 3.8.1p1Openbsd Openssh 3.9Openbsd Openssh 3.0.2p1Openbsd Openssh 2.5Openbsd Openssh 1.3Openbsd Openssh 1.5Openbsd Openssh 3.1p1Openbsd Openssh 3.0.1Openbsd Openssh 2.9.9p2Openbsd Openssh 2.5.2Openbsd Openssh 3.7.1p1Openbsd Openssh 3.5p1Openbsd Openssh 3.6Openbsd Openssh 3.2.2Openbsd Openssh 3.2.2p1Openbsd OpensshOpenbsd Openssh 3.9.1Openbsd Openssh 3.9.1p1Openbsd Openssh 2.1.1Openbsd Openssh 2.2Openbsd Openssh 1.2.27Openbsd Openssh 1.2.3
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
race conditionCVE-2024-4249CVE-2024-4244CVE-2023-20198TCPCVE-2022-48648CVE-2022-48636CVE-2024-21345SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook