Openbsd: >> Openssh Security Vulnerabilities
OpenSSH SSH client before 2.3.0 does not properly disable X11 or agent forwarding, which could allow a malicious SSH server to gain access to the X11 display and sniff X11 events, or gain access to the ssh-agent.
CVSS Score
7.5
EPSS Score
0.018
Published
2001-01-09
Directory traversal vulnerability in scp in sshd 1.2.xx allows a remote malicious scp server to overwrite arbitrary files via a .. (dot dot) attack.
CVSS Score
5.0
EPSS Score
0.028
Published
2000-12-19
Format string vulnerabilities in OpenBSD ssh program (and possibly other BSD-based operating systems) allow attackers to gain root privileges.
CVSS Score
10.0
EPSS Score
0.005
Published
2000-12-11
OpenSSH does not properly drop privileges when the UseLogin option is enabled, which allows local users to execute arbitrary commands by providing the command to the ssh daemon.
CVSS Score
10.0
EPSS Score
0.009
Published
2000-06-08
The default configuration of SSH allows X forwarding, which could allow a remote attacker to control a client's X sessions via a malicious xauth program.
CVSS Score
5.1
EPSS Score
0.006
Published
2000-02-24
The SSH protocol server sshd allows local users without shell access to redirect a TCP connection through a service that uses the standard system password database for authentication, such as POP or FTP.
CVSS Score
4.6
EPSS Score
0.001
Published
2000-02-11
An SSH 1.2.27 server allows a client to use the "none" cipher, even if it is not allowed by the server policy.
CVSS Score
2.1
EPSS Score
0.002
Published
1999-12-14
Page 12