Lucene search

K

[email protected]NVD:CVE-2001-0361

HistoryJun 27, 2001 - 4:00 a.m.

CVE-2001-0361

2001-06-2704:00:00

CWE-310

[email protected]

web.nvd.nist.gov

4 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:H/Au:N/C:P/I:P/A:N

6.4 Medium

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

72.2%

Implementations of SSH version 1.5, including (1) OpenSSH up to version 2.3.0, (2) AppGate, and (3) ssh-1 up to version 1.2.31, in certain configurations, allow a remote attacker to decrypt and/or alter traffic via a “Bleichenbacher attack” on PKCS#1 version 1.5.

Affected configurations

NVD

Node

openbsdopensshMatch1.2.3

OR

openbsdopensshMatch2.1

OR

openbsdopensshMatch2.1.1

OR

sshsshRange≤1.2.31

References

ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-01:24.ssh.asc

marc.info/?l=bugtraq&m=98158450021686&w=2

www.ciac.org/ciac/bulletins/l-047.shtml

www.debian.org/security/2001/dsa-023

www.debian.org/security/2001/dsa-027

www.debian.org/security/2001/dsa-086

www.novell.com/linux/security/advisories/adv004_ssh.html

www.osvdb.org/2116

www.securityfocus.com/bid/2344

exchange.xforce.ibmcloud.com/vulnerabilities/6082

4 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:H/Au:N/C:P/I:P/A:N

6.4 Medium

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

72.2%

Related for NVD:CVE-2001-0361

cert1 suse1 openvas6 checkpoint_advisories2 cve1 cvelist1 nessus7 f52