CVE-2000-0217

The default configuration of SSH allows X forwarding, which could allow a remote attacker to control a client's X sessions via a malicious xauth program.

Published : 2000-02-24 05:00 Updated : 2008-09-10 19:03

5.1
CVSS Score More info
Score 5.1 / 10
5.1
Vendor Product Version URI
Ssh Ssh 1.2.7 cpe:/a:ssh:ssh:1.2.7
Ssh Ssh 1.2.8 cpe:/a:ssh:ssh:1.2.8
Ssh Ssh 1.2.1 cpe:/a:ssh:ssh:1.2.1
Ssh Ssh 1.2.2 cpe:/a:ssh:ssh:1.2.2
Ssh Ssh 1.2.5 cpe:/a:ssh:ssh:1.2.5
Ssh Ssh 1.2.6 cpe:/a:ssh:ssh:1.2.6
Ssh Ssh 1.2.9 cpe:/a:ssh:ssh:1.2.9
Ssh Ssh 1.2.20 cpe:/a:ssh:ssh:1.2.20
Ssh Ssh 1.2.3 cpe:/a:ssh:ssh:1.2.3
Ssh Ssh 1.2.4 cpe:/a:ssh:ssh:1.2.4
Ssh Ssh2 2.0.1 cpe:/a:ssh:ssh2:2.0.1
Ssh Ssh 1.2.15 cpe:/a:ssh:ssh:1.2.15
Ssh Ssh 1.2.14 cpe:/a:ssh:ssh:1.2.14
Openbsd Openssh 1.2 cpe:/a:openbsd:openssh:1.2
Ssh Ssh 1.2.17 cpe:/a:ssh:ssh:1.2.17
Ssh Ssh 1.2.16 cpe:/a:ssh:ssh:1.2.16
Ssh Ssh 1.2.11 cpe:/a:ssh:ssh:1.2.11
Ssh Ssh 1.2.10 cpe:/a:ssh:ssh:1.2.10
Ssh Ssh 1.2.13 cpe:/a:ssh:ssh:1.2.13
Ssh Ssh 1.2.12 cpe:/a:ssh:ssh:1.2.12
Ssh Ssh 1.2.19 cpe:/a:ssh:ssh:1.2.19
Ssh Ssh 1.2.18 cpe:/a:ssh:ssh:1.2.18
Ssh Ssh 1.2.31 cpe:/a:ssh:ssh:1.2.31
Ssh Ssh 1.2.30 cpe:/a:ssh:ssh:1.2.30
Ssh Ssh2 2.0.12 cpe:/a:ssh:ssh2:2.0.12
Ssh Ssh2 2.0.2 cpe:/a:ssh:ssh2:2.0.2
Ssh Ssh2 2.0 cpe:/a:ssh:ssh2:2.0
Ssh Ssh2 2.0.11 cpe:/a:ssh:ssh2:2.0.11
Ssh Ssh2 2.0.3 cpe:/a:ssh:ssh2:2.0.3
Ssh Ssh 1.2.26 cpe:/a:ssh:ssh:1.2.26
Ssh Ssh2 2.0.10 cpe:/a:ssh:ssh2:2.0.10
Ssh Ssh2 2.0.4 cpe:/a:ssh:ssh2:2.0.4
Ssh Ssh 1.2.25 cpe:/a:ssh:ssh:1.2.25
Ssh Ssh2 2.0.5 cpe:/a:ssh:ssh2:2.0.5
Ssh Ssh 1.2.28 cpe:/a:ssh:ssh:1.2.28
Ssh Ssh2 2.0.6 cpe:/a:ssh:ssh2:2.0.6
Ssh Ssh 1.2.27 cpe:/a:ssh:ssh:1.2.27
Ssh Ssh2 2.0.7 cpe:/a:ssh:ssh2:2.0.7
Ssh Ssh 1.2.22 cpe:/a:ssh:ssh:1.2.22
Ssh Ssh2 2.0.8 cpe:/a:ssh:ssh2:2.0.8
Ssh Ssh 1.2.21 cpe:/a:ssh:ssh:1.2.21
Ssh Ssh2 2.0.9 cpe:/a:ssh:ssh2:2.0.9
Ssh Ssh 1.2.24 cpe:/a:ssh:ssh:1.2.24
Ssh Ssh 1.2.0 cpe:/a:ssh:ssh:1.2.0
Ssh Ssh 1.2.23 cpe:/a:ssh:ssh:1.2.23
Ssh Ssh 1.2.29 cpe:/a:ssh:ssh:1.2.29
  1. Openbsd (1) Search CVE
    1. Openssh (1) Search CVE
      1. 1.2
  2. Ssh (2) Search CVE
    1. Ssh (32) Search CVE
      1. 1.2.7
      2. 1.2.8
      3. 1.2.1
      4. 1.2.2
      5. 1.2.5
      6. 1.2.6
      7. 1.2.9
      8. 1.2.20
      9. 1.2.3
      10. 1.2.4
      11. 1.2.15
      12. 1.2.14
      13. 1.2.17
      14. 1.2.16
      15. 1.2.11
      16. 1.2.10
      17. 1.2.13
      18. 1.2.12
      19. 1.2.19
      20. 1.2.18
      21. 1.2.31
      22. 1.2.30
      23. 1.2.26
      24. 1.2.25
      25. 1.2.28
      26. 1.2.27
      27. 1.2.22
      28. 1.2.21
      29. 1.2.24
      30. 1.2.0
      31. 1.2.23
      32. 1.2.29
    2. Ssh2 (13) Search CVE
      1. 2.0.1
      2. 2.0.12
      3. 2.0.2
      4. 2.0
      5. 2.0.11
      6. 2.0.3
      7. 2.0.10
      8. 2.0.4
      9. 2.0.5
      10. 2.0.6
      11. 2.0.7
      12. 2.0.8
      13. 2.0.9

CWE

There is no CWE for this CVE.

Reference

History of changes

Date Event
2000-02-24 05:00

New CVE