Lucene search
MitreCVE-2001-0816HistoryMar 09, 2002 - 5:00 a.m.
CVE-2001-0816
2002-03-0905:00:00
mitre
web.nvd.nist.gov
39
openssh
bypass
sftp-server
restricted keypairs
remote users
cve-2001-0816
nvd
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
9.1
Confidence
High
EPSS
0.005
Percentile
76.2%
OpenSSH before 2.9.9, when running sftp using sftp-server and using restricted keypairs, allows remote authenticated users to bypass authorized_keys2 command= restrictions using sftp commands.
Affected configurations
Node
openbsdopensshRange≤2.9.9
References
Related
cvelist
cvelist
CVE-2001-0816
2002-03-09 05:00:00
nvd
nvd
CVE-2001-0816
2001-12-06 05:00:00
nessus
nessus
OpenSSH 2.5.x - 2.9 Multiple Vulnerabilities
2001-09-28 00:00:00
SunSSH < 1.1.1 / 1.3 CBC Plaintext Disclosure
2011-08-29 00:00:00
openvas
openvas
OpenSSH 2.5 <= 2.9 Security Vulnerability
2021-05-27 00:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
9.1
Confidence
High
EPSS
0.005
Percentile
76.2%
Related for CVE-2001-0816