Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
10
CVSSv2

CVE-2002-0083

Published: 15/03/2002 Updated: 02/02/2024
CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10
CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9
VMScore: 1000
Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Subscribe to Conectiva

Vulnerability Summary

Off-by-one error in the channel code of OpenSSH 2.0 up to and including 3.0.2 allows local users or remote malicious servers to gain privileges.

Vulnerable Product Search on Vulmon Subscribe to Product

conectiva linux graficas

immunix immunix 7.0

conectiva linux 6.0

conectiva linux 5.1

openpkg openpkg 1.0

conectiva linux ecommerce

mandrakesoft mandrake single network firewall 7.2

conectiva linux 7.0

conectiva linux 5.0

openbsd openssh

mandrakesoft mandrake linux 7.2

trustix secure linux 1.1

suse suse linux 7.1

redhat linux 7.0

redhat linux 7.2

mandrakesoft mandrake linux 8.1

mandrakesoft mandrake linux corporate server 1.0.1

mandrakesoft mandrake linux 7.1

suse suse linux 7.3

suse suse linux 7.0

trustix secure linux 1.5

suse suse linux 6.4

mandrakesoft mandrake linux 8.0

engardelinux secure linux 1.0.1

trustix secure linux 1.2

suse suse linux 7.2

redhat linux 7.1

Exploits

Exploit DB: OpenSSH 2.x/3.0.1/3.0.2 - Channel Code Off-by-One
source: wwwsecurityfocuscom/bid/4241/info OpenSSH is a suite implementing the SSH protocol It includes client and server software, and supports ssh and sftp It was initially developed for BSD, but is also widely used for Linux, Solaris, and other UNIX-like operating systems A vulnerability has been announced in some versions of OpenSS ...

References

CWE-193http://www.linuxsecurity.com/advisories/other_advisory-1937.htmlhttp://www.debian.org/security/2002/dsa-119http://www.openbsd.org/advisories/ssh_channelalloc.txthttp://archives.neohapsis.com/archives/vulnwatch/2002-q1/0060.htmlhttp://archives.neohapsis.com/archives/bugtraq/2002-03/0108.htmlhttp://online.securityfocus.com/archive/1/264657http://www.novell.com/linux/security/advisories/2002_009_openssh_txt.htmlhttp://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000467http://www.redhat.com/support/errata/RHSA-2002-043.htmlhttp://www.linux-mandrake.com/en/security/2002/MDKSA-2002-019.phpftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2002-004.txt.ascftp://stage.caldera.com/pub/security/openserver/CSSA-2002-SCO.10/CSSA-2002-SCO.10.txtftp://stage.caldera.com/pub/security/openunix/CSSA-2002-SCO.11/CSSA-2002-SCO.11.txthttp://www.calderasystems.com/support/security/advisories/CSSA-2002-012.0.txtftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-02:13.openssh.aschttp://online.securityfocus.com/advisories/3960http://www.iss.net/security_center/static/8383.phphttp://www.securityfocus.com/bid/4241http://www.osvdb.org/730http://marc.info/?l=bugtraq&m=101586991827622&w=2http://marc.info/?l=bugtraq&m=101552065005254&w=2http://marc.info/?l=bugtraq&m=101553908201861&w=2http://marc.info/?l=bugtraq&m=101561384821761&w=2https://nvd.nist.govhttps://www.exploit-db.com/exploits/21314/https://www.kb.cert.org/vuls/id/408419
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
race conditionCVE-2024-4249CVE-2024-4244CVE-2023-20198TCPCVE-2022-48648CVE-2022-48636CVE-2024-21345SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook