CVE-2003-0386

OpenSSH 3.6.1 and earlier, when restricting host access by numeric IP addresses and with VerifyReverseMapping disabled, allows remote attackers to bypass "from=" and "user@host" address restrictions by connecting to a host from a system whose reverse DNS hostname contains the numeric IP address.

Published : 2003-07-02 04:00 Updated : 2017-10-11 01:29

7.5
CVSS Score More info
Score 7.5 / 10
7.5
Vendor Product Version URI
Openbsd Openssh 3.6.1 cpe:/a:openbsd:openssh:3.6.1
  1. Openbsd (1) Search CVE
    1. Openssh (1) Search CVE
      1. 3.6.1

CWE

There is no CWE for this CVE.

History of changes

Date Event
2003-07-02 04:00

New CVE