|
111
|
-
5.0
|
MEDIUM
|
Directory traversal vulnerability in scp in sshd 1.2.xx allows a remote malicious scp server to overwrite arbitrary files via a .. (dot dot) attack.
|
NVD-CWE-Other
|
CVE-2000-0992
|
cpe:2.3:a:openbsd:openssh:1.2:* cpe:2.3:a:openbsd:openssh:1.2.3:*
|
|
|
|
|
2018-05-3 10:29
2000-12-19
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
112
|
-
10.0
|
HIGH
|
Format string vulnerabilities in OpenBSD ssh program (and possibly other BSD-based operating systems) allow attackers to gain root privileges.
|
NVD-CWE-Other
|
CVE-2000-0999
|
cpe:2.3:a:openbsd:openssh:4.5:*
|
|
|
|
|
2008-09-6 05:22
2000-12-11
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
113
|
-
10.0
|
HIGH
|
OpenSSH does not properly drop privileges when the UseLogin option is enabled, which allows local users to execute arbitrary commands by providing the command to the ssh daemon.
|
NVD-CWE-Other
|
CVE-2000-0525
|
cpe:2.3:a:openbsd:openssh:2.1:* cpe:2.3:a:openbsd:openssh:1.2:* cpe:2.3:a:openbsd:openssh:1.2.3:*
|
|
|
|
|
2017-10-10 10:29
2000-06-8
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
114
|
-
5.1
|
MEDIUM
|
The default configuration of SSH allows X forwarding, which could allow a remote attacker to control a client's X sessions via a malicious xauth program.
|
NVD-CWE-Other
|
CVE-2000-0217
|
cpe:2.3:a:openbsd:openssh:1.2:*
|
|
|
|
|
2008-09-11 04:03
2000-02-24
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
115
|
-
4.6
|
MEDIUM
|
The SSH protocol server sshd allows local users without shell access to redirect a TCP connection through a service that uses the standard system password database for authentication, such as POP or …
|
NVD-CWE-Other
|
CVE-2000-0143
|
cpe:2.3:a:openbsd:openssh:1.2:* cpe:2.3:a:openbsd:openssh:*:*
|
|
1.2.1
|
|
|
2022-08-17 19:15
2000-02-11
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
116
|
-
2.1
|
LOW
|
An SSH 1.2.27 server allows a client to use the "none" cipher, even if it is not allowed by the server policy.
|
NVD-CWE-Other
|
CVE-1999-1010
|
cpe:2.3:a:openbsd:openssh:1.2.27:*
|
|
|
|
|
2016-10-18 11:00
1999-12-14
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|