Published: 06/10/2003 Updated: 03/05/2018

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 668

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Multiple "buffer management errors" in OpenSSH prior to 3.7.1 may allow malicious users to cause a denial of service or execute arbitrary code using (1) buffer_init in buffer.c, (2) buffer_free in buffer.c, or (3) a separate function in channels.c, a different vulnerability than CVE-2003-0693.

Vulnerable Product	Search on Vulmon	Subscribe to Product
openbsd openssh

Several bugs have been found in OpenSSH's buffer handling It is not known if these bugs are exploitable, but as a precaution an upgrade is advised DSA-383-2: This advisory is an addition to the earlier DSA-383-1 advisory: Solar Designer found four more bugs in OpenSSH that may be exploitable For the Debian stable distribution these bugs have bee ...

New vulnerabilities in the OpenSSH implementation for SSH servers have been announced An affected network device, running an SSH server based on the OpenSSH implementation, may be vulnerable to a Denial of Service (DoS) attack when an exploit script is repeatedly executed against the same device There are workarounds available to mi ...

NVD-CWE-Other http://www.redhat.com/support/errata/RHSA-2003-280.html http://www.debian.org/security/2003/dsa-383 http://www.openssh.com/txt/buffer.adv http://www.debian.org/security/2003/dsa-382 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000741 http://www.mandriva.com/security/advisories?name=MDKSA-2003:090 http://marc.info/?l=bugtraq&m=106373546332230&w=2 http://marc.info/?l=bugtraq&m=106381396120332&w=2 http://marc.info/?l=openbsd-security-announce&m=106375582924840 http://marc.info/?l=bugtraq&m=106382542403716&w=2 http://marc.info/?l=bugtraq&m=106381409220492&w=2 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A452 https://nvd.nist.gov https://www.debian.org/security/./dsa-383 http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20030917-openssh

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2003-0695

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect