Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2002-0083
HistoryJun 25, 2002 - 4:00 a.m.

CVE-2002-0083

2002-06-2504:00:00
CWE-193
[email protected]
web.nvd.nist.gov
160
openssh
cve-2002-0083
off-by-one error
privilege escalation
channel code
local users
remote servers

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.1 High

AI Score

Confidence

High

0.009 Low

EPSS

Percentile

82.5%

JSON

Off-by-one error in the channel code of OpenSSH 2.0 through 3.0.2 allows local users or remote malicious servers to gain privileges.

Affected configurations

NVD
Node
immuniximmunixMatch7.0
OR
mandrakesoftmandrake_single_network_firewallMatch7.2
OR
openbsdopensshRange2.03.1
OR
openpkgopenpkgMatch1.0
OR
conectivalinuxMatch5.0
OR
conectivalinuxMatch5.1
OR
conectivalinuxMatch6.0
OR
conectivalinuxMatch7.0
OR
conectivalinuxMatchecommerce
OR
conectivalinuxMatchgraficas
Node
engardelinuxsecure_linuxMatch1.0.1
OR
mandrakesoftmandrake_linuxMatch7.1
OR
mandrakesoftmandrake_linuxMatch7.2
OR
mandrakesoftmandrake_linuxMatch8.0
OR
mandrakesoftmandrake_linuxMatch8.0ppc
OR
mandrakesoftmandrake_linuxMatch8.1
OR
mandrakesoftmandrake_linux_corporate_serverMatch1.0.1
OR
redhatlinuxMatch7.0
OR
redhatlinuxMatch7.1
OR
redhatlinuxMatch7.2
OR
susesuse_linuxMatch6.4i386
OR
susesuse_linuxMatch6.4ppc
OR
susesuse_linuxMatch6.4alpha
OR
susesuse_linuxMatch7.0i386
OR
susesuse_linuxMatch7.0ppc
OR
susesuse_linuxMatch7.0sparc
OR
susesuse_linuxMatch7.0alpha
OR
susesuse_linuxMatch7.1spa
OR
susesuse_linuxMatch7.1sparc
OR
susesuse_linuxMatch7.1x86
OR
susesuse_linuxMatch7.1alpha
OR
susesuse_linuxMatch7.2i386
OR
susesuse_linuxMatch7.3i386
OR
susesuse_linuxMatch7.3ppc
OR
susesuse_linuxMatch7.3sparc
OR
trustixsecure_linuxMatch1.1
OR
trustixsecure_linuxMatch1.2
OR
trustixsecure_linuxMatch1.5

References

Related

openvas 2
freebsd_advisory 1
nessus 5
f5 2
cert 1
cvelist 1
suse 1
nvd 1
openvas
openvas
OpenSSH Channel Code Off by 1
2005-11-03 00:00:00
OpenSSH Channel Code Off by 1
2005-11-03 00:00:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-02:13.openssh
2002-03-07 00:00:00
nessus
nessus
Mandrake Linux Security Advisory : openssh (MDKSA-2002:019)
2004-07-31 00:00:00
Debian DSA-119-1 : ssh -- local root exploit, remote client exploit
2004-09-29 00:00:00
OpenSSH < 3.1 Channel Code Off by One Remote Privilege Escalation
2002-03-07 00:00:00
f5
f5
SOL1648 - OpenSSH array overflow - CAN-2002-0083
2005-10-01 00:00:00
OpenSSH array overflow - CAN-2002-0083
2005-10-02 04:00:00
cert
cert
OpenSSH contains a one-off overflow of an array in the channel handling code
2002-03-07 00:00:00
cvelist
cvelist
CVE-2002-0083
2002-06-25 04:00:00
suse
suse
local and remote command execution in 009
2002-03-07 18:29:06
nvd
nvd
CVE-2002-0083
2002-03-15 05:00:00

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.1 High

AI Score

Confidence

High

0.009 Low

EPSS

Percentile

82.5%

JSON
Related for CVE-2002-0083
openvas2freebsd_advisory1nessus5f52cert1cvelist1suse1nvd1