[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

248364

 
 

909

 
 

195388

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2002-0575Date: (C)2002-06-18   (M)2023-12-22


Buffer overflow in OpenSSH before 2.9.9, and 3.x before 3.2.1, with Kerberos/AFS support and KerberosTgtPassing or AFSTokenPassing enabled, allows remote and local authenticated users to gain privileges.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 7.5
Exploit Score: 10.0
Impact Score: 6.4
 
CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality: PARTIAL
Integrity: PARTIAL
Availability: PARTIAL
  
Reference:
http://online.securityfocus.com/archive/1/268718
http://archives.neohapsis.com/archives/bugtraq/2002-04/0298.html
http://online.securityfocus.com/archive/1/269701
http://archives.neohapsis.com/archives/bugtraq/2002-04/0394.html
http://marc.info/?l=bugtraq&m=102167972421837&w=2
BID-4560
OSVDB-781
CSSA-2002-022.2
openssh-sshd-kerberos-bo(8896)

CPE    16
cpe:/a:openbsd:openssh:2.9.9
cpe:/a:openbsd:openssh:3.0.2
cpe:/a:openbsd:openssh:3.0.1
cpe:/a:openbsd:openssh:2.1.1
...

© SecPod Technologies