Lucene search
HistoryMay 07, 2001 - 4:00 a.m.
CVE-2001-0144
cve-2001-0144
core sdi ssh1
crc-32 compensation attack
remote attacks
integer overflow
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
7.4 High
AI Score
Confidence
High
0.122 Low
EPSS
Percentile
95.4%
CORE SDI SSH1 CRC-32 compensation attack detector allows remote attackers to execute arbitrary commands on an SSH server or client via an integer overflow.
Affected configurations
Node
openbsdopensshMatch1.2.2
ORopenbsdopensshMatch1.2.3
ORopenbsdopensshMatch2.1
ORopenbsdopensshMatch2.1.1
ORopenbsdopensshMatch2.2
ORsshsshMatch1.2.24
ORsshsshMatch1.2.25
ORsshsshMatch1.2.26
ORsshsshMatch1.2.27
ORsshsshMatch1.2.28
ORsshsshMatch1.2.29
ORsshsshMatch1.2.30
ORsshsshMatch1.2.31
Related
nessus
nessus
SSH CRC-32 Compensation Attack Remote Overflow
2001-02-09 00:00:00
Debian DSA-086-1 : ssh-nonfree - remote root exploit
2004-09-29 00:00:00
Debian DSA-027-1 : OpenSSH - remote exploit
2004-09-29 00:00:00
nvd
nvd
securityvulns
securityvulns
Netscreen SSH1 CRC32 Compensation Denial of service
2002-11-02 00:00:00
[CORE SDI ADVISORY] SSH1 CRC-32 compensation attack detector vulnerability
2001-02-10 00:00:00
BindView advisory: sshd remote root (bug in deattack.c)
2001-02-10 00:00:00
cert
cert
SSH CRC32 attack detection code contains remote integer overflow
2001-10-24 00:00:00
cvelist
cvelist
cve
cve
prion
prion
Design/Logic Flaw
2007-09-04 22:17:00
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
7.4 High
AI Score
Confidence
High
0.122 Low
EPSS
Percentile
95.4%
Related for CVE-2001-0144