Vulnerabilities
Vulnerable Software
Openbsd:  >> Openssh  Security Vulnerabilities
Directory traversal vulnerability in scp in sshd 1.2.xx allows a remote malicious scp server to overwrite arbitrary files via a .. (dot dot) attack.
CVSS Score
5.0
EPSS Score
0.057
Published
2000-12-19
Format string vulnerabilities in OpenBSD ssh program (and possibly other BSD-based operating systems) allow attackers to gain root privileges.
CVSS Score
10.0
EPSS Score
0.119
Published
2000-12-11
OpenSSH does not properly drop privileges when the UseLogin option is enabled, which allows local users to execute arbitrary commands by providing the command to the ssh daemon.
CVSS Score
10.0
EPSS Score
0.026
Published
2000-06-08
The default configuration of SSH allows X forwarding, which could allow a remote attacker to control a client's X sessions via a malicious xauth program.
CVSS Score
5.1
EPSS Score
0.01
Published
2000-02-24
The SSH protocol server sshd allows local users without shell access to redirect a TCP connection through a service that uses the standard system password database for authentication, such as POP or FTP.
CVSS Score
4.6
EPSS Score
0.003
Published
2000-02-11
An SSH 1.2.27 server allows a client to use the "none" cipher, even if it is not allowed by the server policy.
CVSS Score
2.1
EPSS Score
0.014
Published
1999-12-14


Contact Us

Shodan ® - All rights reserved