Lucene search

[email protected]NVD:CVE-2002-0083

HistoryMar 15, 2002 - 5:00 a.m.

CVE-2002-0083

2002-03-1505:00:00

CWE-193

[email protected]

web.nvd.nist.gov

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.1 High

AI Score

Confidence

High

0.009 Low

EPSS

Percentile

82.5%

JSON

Off-by-one error in the channel code of OpenSSH 2.0 through 3.0.2 allows local users or remote malicious servers to gain privileges.

Affected configurations

NVD

Node

immuniximmunixMatch7.0

mandrakesoftmandrake_single_network_firewallMatch7.2

openbsdopensshRange2.0–3.1

openpkgopenpkgMatch1.0

conectivalinuxMatch5.0

conectivalinuxMatch5.1

conectivalinuxMatch6.0

conectivalinuxMatch7.0

conectivalinuxMatchecommerce

conectivalinuxMatchgraficas

Node

engardelinuxsecure_linuxMatch1.0.1

mandrakesoftmandrake_linuxMatch7.1

mandrakesoftmandrake_linuxMatch7.2

mandrakesoftmandrake_linuxMatch8.0

mandrakesoftmandrake_linuxMatch8.0ppc

mandrakesoftmandrake_linuxMatch8.1

mandrakesoftmandrake_linux_corporate_serverMatch1.0.1

redhatlinuxMatch7.0

redhatlinuxMatch7.1

redhatlinuxMatch7.2

susesuse_linuxMatch6.4i386

susesuse_linuxMatch6.4ppc

susesuse_linuxMatch6.4alpha

susesuse_linuxMatch7.0i386

susesuse_linuxMatch7.0ppc

susesuse_linuxMatch7.0sparc

susesuse_linuxMatch7.0alpha

susesuse_linuxMatch7.1spa

susesuse_linuxMatch7.1sparc

susesuse_linuxMatch7.1x86

susesuse_linuxMatch7.1alpha

susesuse_linuxMatch7.2i386

susesuse_linuxMatch7.3i386

susesuse_linuxMatch7.3ppc

susesuse_linuxMatch7.3sparc

trustixsecure_linuxMatch1.1

trustixsecure_linuxMatch1.2

trustixsecure_linuxMatch1.5

References

ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-02:13.openssh.asc

ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2002-004.txt.asc

ftp://stage.caldera.com/pub/security/openserver/CSSA-2002-SCO.10/CSSA-2002-SCO.10.txt

ftp://stage.caldera.com/pub/security/openunix/CSSA-2002-SCO.11/CSSA-2002-SCO.11.txt

archives.neohapsis.com/archives/bugtraq/2002-03/0108.html

archives.neohapsis.com/archives/vulnwatch/2002-q1/0060.html

distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000467

marc.info/?l=bugtraq&m=101552065005254&w=2

marc.info/?l=bugtraq&m=101553908201861&w=2

marc.info/?l=bugtraq&m=101561384821761&w=2

marc.info/?l=bugtraq&m=101586991827622&w=2

online.securityfocus.com/advisories/3960

online.securityfocus.com/archive/1/264657

www.calderasystems.com/support/security/advisories/CSSA-2002-012.0.txt

www.debian.org/security/2002/dsa-119

www.iss.net/security_center/static/8383.php

www.linux-mandrake.com/en/security/2002/MDKSA-2002-019.php

www.linuxsecurity.com/advisories/other_advisory-1937.html

www.novell.com/linux/security/advisories/2002_009_openssh_txt.html

www.openbsd.org/advisories/ssh_channelalloc.txt

www.osvdb.org/730

www.redhat.com/support/errata/RHSA-2002-043.html

www.securityfocus.com/bid/4241

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.1 High

AI Score

Confidence

High

0.009 Low

EPSS

Percentile

82.5%

JSON

Related for NVD:CVE-2002-0083

openvas2 freebsd_advisory1 nessus5 cvelist1 f52 cert1 cve1 suse1