CVE-2001-0144

Published Mar 12, 2001

Last updated 7 years ago

Overview

Description: CORE SDI SSH1 CRC-32 compensation attack detector allows remote attackers to execute arbitrary commands on an SSH server or client via an integer overflow.
Source: cve@mitre.org
NVD status: Modified

Hype score: Not currently trending

Risk scores

CVSS 2.0

Type: Primary
Base score: 10
Impact score: 10
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:C/I:C/A:C

Weaknesses

nvd@nist.gov: NVD-CWE-Other

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:openbsd:openssh:1.2.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B6E307F1-C765-409C-835C-133026A5179C"
          },
          {
            "criteria": "cpe:2.3:a:openbsd:openssh:1.2.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CA997F5E-29FE-454A-9006-001D732CD4B1"
          },
          {
            "criteria": "cpe:2.3:a:openbsd:openssh:2.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EED5E506-9D2B-4CAF-8455-B9BE7696E49C"
          },
          {
            "criteria": "cpe:2.3:a:openbsd:openssh:2.1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EE7CB94E-0479-4939-86F6-0B4BEDE2E739"
          },
          {
            "criteria": "cpe:2.3:a:openbsd:openssh:2.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "78135400-BA1A-42AA-BE17-5588442BCF11"
          },
          {
            "criteria": "cpe:2.3:a:ssh:ssh:1.2.24:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B0EDBA45-FDEE-4D4B-A6FF-7E953B523DAE"
          },
          {
            "criteria": "cpe:2.3:a:ssh:ssh:1.2.25:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7AF5BDEF-E86B-4F4D-AF6D-B27044A96B1E"
          },
          {
            "criteria": "cpe:2.3:a:ssh:ssh:1.2.26:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7D0FF07F-E13B-425F-9892-C50B326B2944"
          },
          {
            "criteria": "cpe:2.3:a:ssh:ssh:1.2.27:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "338EDA76-05D6-48C0-952E-6244A5F206F3"
          },
          {
            "criteria": "cpe:2.3:a:ssh:ssh:1.2.28:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F719468E-A218-4EB5-9F8D-7841E84F44C8"
          },
          {
            "criteria": "cpe:2.3:a:ssh:ssh:1.2.29:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1E4FCD36-0009-4A93-A190-8FDD11C672CA"
          },
          {
            "criteria": "cpe:2.3:a:ssh:ssh:1.2.30:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "71727854-1B75-465F-AF8C-DFE6EFF46B40"
          },
          {
            "criteria": "cpe:2.3:a:ssh:ssh:1.2.31:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "64B76EA2-D3A6-4751-ADE6-998C2A7B44FA"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Social media

Risk scores

CVSS 2.0

Weaknesses

Configurations

References