Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-1999-1231

ssh 2.0.12, and possibly other versions, allows valid user names to attempt to enter the correct password multiple times, but only prompts an invalid user name for a password once, which allows remote attackers to determine user account names on the server.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.01
EPSS Ranking 75.3%
CVSS Severity
CVSS v2 Score 5.0
Products affected by CVE-1999-1231
  • Ssh » Ssh2 » Version: 2.0
    cpe:2.3:a:ssh:ssh2:2.0
  • Ssh » Ssh2 » Version: 2.0.1
    cpe:2.3:a:ssh:ssh2:2.0.1
  • Ssh » Ssh2 » Version: 2.0.10
    cpe:2.3:a:ssh:ssh2:2.0.10
  • Ssh » Ssh2 » Version: 2.0.11
    cpe:2.3:a:ssh:ssh2:2.0.11
  • Ssh » Ssh2 » Version: 2.0.12
    cpe:2.3:a:ssh:ssh2:2.0.12
  • Ssh » Ssh2 » Version: 2.0.2
    cpe:2.3:a:ssh:ssh2:2.0.2
  • Ssh » Ssh2 » Version: 2.0.3
    cpe:2.3:a:ssh:ssh2:2.0.3
  • Ssh » Ssh2 » Version: 2.0.4
    cpe:2.3:a:ssh:ssh2:2.0.4
  • Ssh » Ssh2 » Version: 2.0.5
    cpe:2.3:a:ssh:ssh2:2.0.5
  • Ssh » Ssh2 » Version: 2.0.6
    cpe:2.3:a:ssh:ssh2:2.0.6
  • Ssh » Ssh2 » Version: 2.0.7
    cpe:2.3:a:ssh:ssh2:2.0.7
  • Ssh » Ssh2 » Version: 2.0.8
    cpe:2.3:a:ssh:ssh2:2.0.8
  • Ssh » Ssh2 » Version: 2.0.9
    cpe:2.3:a:ssh:ssh2:2.0.9


Products
Pricing
Contact Us

Shodan ® - All rights reserved