CVE Vulnerabilities

CVE-2001-1475

Published: Jan 18, 2001 | Modified: Jul 11, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.5 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

SSH before 2.0, when using RC4 and password authentication, allows remote attackers to replay messages until a new server key (VK) is generated.

Affected Software

Name Vendor Start Version End Version
Ssh Ssh 1.2.24 1.2.24
Ssh Ssh 1.2.25 1.2.25
Ssh Ssh 1.2.26 1.2.26
Ssh Ssh 1.2.27 1.2.27
Ssh Ssh 1.2.28 1.2.28
Ssh Ssh 1.2.29 1.2.29
Ssh Ssh 1.2.30 1.2.30
Ssh Ssh 1.2.31 1.2.31

References