This CPE summary could be partial or incomplete. Please contact us for a detailed listing.
Summary
| Summuary | |
|---|---|
| CPE Name | cpe:/a:ssh:ssh:1.2.28 |
| Detail | |||
|---|---|---|---|
| Vendor | Ssh | First view | 2000-02-24 |
| Product | Ssh | Last view | 2011-05-31 |
| Version | 1.2.28 | Type | Application |
| Edition | |||
| Language | |||
| Update | |||
| CPE Product | cpe:/a:ssh:ssh | ||
Activity : Yearly
Related : CVE
| Date | Alert | Access Vector | Access Complexity | Authentification | ||
|---|---|---|---|---|---|---|
| 7.8 | 2011-05-31 | CVE-2011-0766 | Network | Low | None Requ... | |
| 7.2 | 2002-12-31 | CVE-2002-1715 | Local | Low | None Requ... | |
| 7.5 | 2001-08-22 | CVE-2001-0572 | Network | Low | None Requ... | |
| 3.6 | 2001-06-02 | CVE-2001-0259 | Local | Low | None Requ... | |
| 10 | 2001-03-12 | CVE-2001-0144 | Network | Low | None Requ... | |
| Date | Alert | Access Vector | Access Complexity | Authentification | ||
|---|---|---|---|---|---|---|
| 7.5 | 2001-01-18 | CVE-2001-1476 | Network | Low | None Requ... | |
| 7.5 | 2001-01-18 | CVE-2001-1475 | Network | Low | None Requ... | |
| 5 | 2001-01-18 | CVE-2001-1474 | Network | Low | None Requ... | |
| 7.5 | 2001-01-18 | CVE-2001-1473 | Network | Low | None Requ... | |
| 5 | 2001-01-18 | CVE-2001-1470 | Network | Low | None Requ... | |
| 5 | 2001-01-18 | CVE-2001-1469 | Network | Low | None Requ... | |
| 5 | 2000-12-19 | CVE-2000-0992 | Network | Low | None Requ... | |
| 5.1 | 2000-02-24 | CVE-2000-0217 | Network | High | None Requ... |
CWE : Common Weakness Enumeration
| % | id | Name |
|---|---|---|
| 100% (2) | CWE-310 | Cryptographic Issues |
Oval Markup Language : Definitions
| OvalID | Name |
|---|---|
| oval:org.mitre.oval:def:5397 | Multiple Vendor SSH Buffer Overflow Vulnerability |
Open Source Vulnerability Database (OSVDB)
| id | Description |
|---|---|
| 73264 | Erlang/OTP SSH Predictable Seed Insecure Random Number Generator Weakness |
| 23589 | SSH Directory Permission Weakness Restricted Shell Bypass |
| 18235 | SSH RC4 with Password Authentication Message Reply Forced Server Key Generation |
| 18234 | SSH RC4 User Session Replay Password Portion Enumeration |
| 18232 | SSH-1 Protocol Duplicate Session ID Client Challenge Response Replay |
| id | Description |
|---|---|
| 18231 | SSH localhost Connection Host Key Check Bypass |
| 18230 | SSH-1 Protocol RC4 Stream Cipher CRC XOR Arbitrary Packet Modification |
| 18229 | SSH-1 Protocol IDEA Cipher Final Block CRC Modification |
| 6471 | SSH ssh-keygen with Secure-RPC SUN-DES-1 Phrase Recovery |
| 3562 | SSH Traffic Analysis Connection Attributes Disclosure |
| 3561 | Cisco Devices SSH Password Length Disclosure |
| 1586 | sshd scp Traversal Arbitrary File Overwrite |
| 1229 | SSH client xauth Session Hijacking |
| 795 | Multiple Vendor SSH CRC-32 detect_attack() Function Overflow |
