Openbsd: >> Openssh >> 2.1.1 Security Vulnerabilities
OpenSSH version 2.9 and earlier, with X forwarding enabled, allows a local attacker to delete any file named 'cookies' via a symlink attack.
CVSS Score
7.2
EPSS Score
0.001
Published
2001-08-14
Implementations of SSH version 1.5, including (1) OpenSSH up to version 2.3.0, (2) AppGate, and (3) ssh-1 up to version 1.2.31, in certain configurations, allow a remote attacker to decrypt and/or alter traffic via a "Bleichenbacher attack" on PKCS#1 version 1.5.
CVSS Score
4.0
EPSS Score
0.015
Published
2001-06-27
OpenSSH 2.9 and earlier does not initiate a Pluggable Authentication Module (PAM) session if commands are executed with no pty, which allows local users to bypass resource limits (rlimits) set in pam.d.
CVSS Score
7.5
EPSS Score
0.006
Published
2001-06-19
CORE SDI SSH1 CRC-32 compensation attack detector allows remote attackers to execute arbitrary commands on an SSH server or client via an integer overflow.
CVSS Score
10.0
EPSS Score
0.568
Published
2001-03-12
Page 7