Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ssh2 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-5776
Multiple directory traversal vulnerabilities in Aperto Blog 0.1.1 allow remote malicious users to include and execute arbitrary local files via directory traversal sequences in the (1) action parameter to admin.php and the (2) get parameter to index.php. NOTE: in some environment...
Apertoblog Apertoblog 0.1.1
1 EDB exploit
NA
CVE-2009-3702
Multiple absolute path traversal vulnerabilities in PHP-Calendar 1.1 allow remote malicious users to include and execute arbitrary local files via a full pathname in the configfile parameter to (1) update08.php or (2) update10.php. NOTE: in some environments, this can be leverage...
Php-calendar Php-calendar 1.1
2 EDB exploits
NA
CVE-2008-4181
Directory traversal vulnerability in includes/xml.php in the Netenberg Fantastico De Luxe module prior to 2.10.4 r19 for cPanel, when cPanel PHP Register Globals is enabled, allows remote authenticated users to include and execute arbitrary local files via a .. (dot dot) or absol...
Netenberg Fantastico De Luxe
Netenberg Fantastico De Luxe 2.10.4
Netenberg Fantastico De Luxe 2.10.2
Netenberg Fantastico De Luxe 2.10.0
Netenberg Fantastico De Luxe 2.8.8
Netenberg Fantastico De Luxe 2.8.6
Netenberg Fantastico De Luxe 2.8.4
Netenberg Fantastico De Luxe 2.8.2
Netenberg Fantastico De Luxe 2.8.r14
Netenberg Fantastico De Luxe 2.8.r13
Netenberg Fantastico De Luxe 2.8.r6
Netenberg Fantastico De Luxe 2.8.r5
Netenberg Fantastico De Luxe 2.8.r18
Netenberg Fantastico De Luxe 2.8.r17
Netenberg Fantastico De Luxe 2.8.r16
Netenberg Fantastico De Luxe 2.8.r15
Netenberg Fantastico De Luxe 2.8.r8
Netenberg Fantastico De Luxe 2.8.r7
Netenberg Fantastico De Luxe 2.8.r10
Netenberg Fantastico De Luxe 2.8.r9
Netenberg Fantastico De Luxe 2.8.r1
Netenberg Fantastico De Luxe 2.8.r2
1 EDB exploit
NA
CVE-2004-1440
Multiple heap-based buffer overflows in the modpow function in PuTTY prior to 0.55 allow (1) remote malicious users to execute arbitrary code via an SSH2 packet with a base argument that is larger than the mod argument, which causes the modpow function to write memory before the ...
Putty Putty 0.53
Putty Putty 0.53b
Putty Putty 0.49
Putty Putty 0.50
Putty Putty 0.51
Putty Putty 0.52
Putty Putty 0.48
Putty Putty 0.54
NA
CVE-2005-4178
Buffer overflow in Dropbear server prior to 0.47 allows authenticated users to execute arbitrary code via unspecified inputs that cause insufficient memory to be allocated due to an incorrect expression that does not enforce the proper order of operations.
Dropbear Ssh Project Dropbear Ssh
Debian Debian Linux 3.0
Debian Debian Linux 3.1
NA
CVE-2010-0137
Unspecified vulnerability in the sshd_child_handler process in the SSH server in Cisco IOS XR 3.4.1 up to and including 3.7.0 allows remote malicious users to cause a denial of service (process crash and memory consumption) via a crafted SSH2 packet, aka Bug ID CSCsu10574.
Cisco Ios Xr 3.5.3
Cisco Ios Xr 3.5.4
Cisco Ios Xr 3.4.1
Cisco Ios Xr 3.4.2
Cisco Ios Xr 3.7.0
Cisco Ios Xr 3.6.0
Cisco Ios Xr 3.6.1
Cisco Ios Xr 3.4.3
Cisco Ios Xr 3.5.2
NA
CVE-2006-2407
Stack-based buffer overflow in (1) WeOnlyDo wodSSHServer ActiveX Component 1.2.7 and 1.3.3 DEMO, as used in other products including (2) FreeSSHd 1.0.9 and (3) freeFTPd 1.0.10, allows remote malicious users to execute arbitrary code via a long key exchange algorithm string.
Freesshd Freesshd 1.0.9
Weonlydo Wodsshserver 1.2.7
Weonlydo Wodsshserver 1.3.3 Demo
Freeftpd Freeftpd 1.0.10
3 EDB exploits
NA
CVE-2002-1358
Multiple SSH2 servers and clients do not properly handle lists with empty elements or strings, which may allow remote malicious users to cause a denial of service or possibly execute arbitrary code, as demonstrated by the SSHredder SSH protocol test suite.
Cisco Ios 12.0s
Cisco Ios 12.0st
Cisco Ios 12.1t
Cisco Ios 12.2
Cisco Ios 12.2s
Cisco Ios 12.1e
Cisco Ios 12.1ea
Cisco Ios 12.2t
Fissh Ssh Client 1.0a For Windows
Intersoft Securenetterm 5.4.1
Putty Putty 0.48
Putty Putty 0.49
Netcomposite Shellguard Ssh 3.4.6
Pragma Systems Secureshell 2.0
Putty Putty 0.53
Winscp Winscp 2.0.0
NA
CVE-2002-1359
Multiple SSH2 servers and clients do not properly handle large packets or large fields, which may allow remote malicious users to cause a denial of service or possibly execute arbitrary code via buffer overflow attacks, as demonstrated by the SSHredder SSH protocol test suite.
Cisco Ios 12.2s
Cisco Ios 12.2t
Cisco Ios 12.1e
Cisco Ios 12.1ea
Cisco Ios 12.0s
Cisco Ios 12.0st
Cisco Ios 12.1t
Cisco Ios 12.2
Putty Putty 0.53
Winscp Winscp 2.0.0
Netcomposite Shellguard Ssh 3.4.6
Pragma Systems Secureshell 2.0
Fissh Ssh Client 1.0a For Windows
Intersoft Securenetterm 5.4.1
Putty Putty 0.48
Putty Putty 0.49
2 EDB exploits
NA
CVE-2002-1360
Multiple SSH2 servers and clients do not properly handle strings with null characters in them when the string length is specified by a length field, which could allow remote malicious users to cause a denial of service or possibly execute arbitrary code due to interactions with t...
Cisco Ios 12.1t
Cisco Ios 12.2
Cisco Ios 12.0s
Cisco Ios 12.0st
Cisco Ios 12.2s
Cisco Ios 12.2t
Cisco Ios 12.1e
Cisco Ios 12.1ea
Pragma Systems Secureshell 2.0
Putty Putty 0.48
Fissh Ssh Client 1.0a For Windows
Putty Putty 0.49
Putty Putty 0.53
Winscp Winscp 2.0.0
Intersoft Securenetterm 5.4.1
Netcomposite Shellguard Ssh 3.4.6
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
encryption
CVE-2024-4331
CVE-2024-26925
arbitrary code
CVE-2006-4304
CVE-2024-25458
CVE-2024-27077
reflected XSS
CVE-2024-4059
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »