Lucene search
MitreCVE-2005-2771HistorySep 02, 2005 - 11:03 p.m.
CVE-2005-2771
2005-09-0223:03:00
mitre
web.nvd.nist.gov
38
cve-2005-2771
wrq reflection
secure it
windows server
access list
deny list
case-sensitive
remote attackers
bypass restrictions
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
6.7
Confidence
Low
EPSS
0.007
Percentile
81.2%
WRQ Reflection for Secure IT Windows Server 6.0 (formerly known as F-Secure SSH server) processes access and deny lists in a case-sensitive manner, when previous versions were case-insensitive, which might allow remote attackers to bypass intended restrictions and login to accounts that should be denied.
Affected configurations
Node
f-securef-secure_ssh_serverMatch5.1
ORf-securef-secure_ssh_serverMatch5.2
ORf-securef-secure_ssh_serverMatch5.3
ORwrqwrq_reflection_for_secure_it_windows_serverMatch6.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| f-secure | f-secure_ssh_server | 5.1 | cpe:2.3:a:f-secure:f-secure_ssh_server:5.1:*:*:*:*:*:*:* |
| f-secure | f-secure_ssh_server | 5.2 | cpe:2.3:a:f-secure:f-secure_ssh_server:5.2:*:*:*:*:*:*:* |
| f-secure | f-secure_ssh_server | 5.3 | cpe:2.3:a:f-secure:f-secure_ssh_server:5.3:*:*:*:*:*:*:* |
| wrq | wrq_reflection_for_secure_it_windows_server | 6.0 | cpe:2.3:a:wrq:wrq_reflection_for_secure_it_windows_server:6.0:*:*:*:*:*:*:* |
Related
nvd
nvd
CVE-2005-2771
2005-09-02 23:03:00
cvelist
cvelist
CVE-2005-2771
2005-09-02 04:00:00
nessus
nessus
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
6.7
Confidence
Low
EPSS
0.007
Percentile
81.2%
Related for CVE-2005-2771