Vulnerabilities (CVE)

Vendor filter

Ssh Subscribe

Filter

42 total CVE
CVE Vendors Products Updated CVSS
CVE-2006-5484 1 Ssh 5 Tectia Client Server Connector, Tectia Server, Tectia Client and 2 more 2019-08-28 5.0
SSH Tectia Client/Server/Connector 5.1.0 and earlier, Manager 2.2.0 and earlier, and other products, when using an RSA key with exponent 3, removes PKCS-1 padding before generating a hash, which allows remote attackers to forge a PKCS #1 v1.5...
CVE-2007-5616 3 Ssh, Linux, Opengroup 4 Tectia Server, Tectia Client, Linux Kernel and 1 more 2018-10-26 7.2
ssh-signer in SSH Tectia Client and Server 5.x before 5.2.4, and 5.3.x before 5.3.6, on Unix and Linux allows local users to gain privileges via unspecified vectors.
CVE-2008-5161 2 Ssh, Openbsd 5 Openssh, Tectia Connectsecure, Tectia Server and 2 more 2018-10-11 2.6
Error handling in the SSH protocol in (1) SSH Tectia Client and Server and Connector 4.0 through 4.4.11, 5.0 through 5.2.4, and 5.3 through 5.3.8; Client and Server and ConnectSecure 6.0 through 6.0.4; Server for Linux on IBM System z 6.0.4;...
CVE-2001-0361 2 Ssh, Openbsd 2 Openssh, Ssh 2018-05-03 4.0
Implementations of SSH version 1.5, including (1) OpenSSH up to version 2.3.0, (2) AppGate, and (3) ssh-1 up to version 1.2.31, in certain configurations, allow a remote attacker to decrypt and/or alter traffic via a "Bleichenbacher attack" on...
CVE-2001-0144 2 Ssh, Openbsd 2 Openssh, Ssh 2018-05-03 10.0
CORE SDI SSH1 CRC-32 compensation attack detector allows remote attackers to execute arbitrary commands on an SSH server or client via an integer overflow.
CVE-2000-0992 2 Ssh, Openbsd 2 Openssh, Ssh 2018-05-03 5.0
Directory traversal vulnerability in scp in sshd 1.2.xx allows a remote malicious scp server to overwrite arbitrary files via a .. (dot dot) attack.
CVE-1999-1231 1 Ssh 1 Ssh2 2017-12-19 5.0
ssh 2.0.12, and possibly other versions, allows valid user names to attempt to enter the correct password multiple times, but only prompts an invalid user name for a password once, which allows remote attackers to determine user account names on...
CVE-1999-1029 1 Ssh 1 Ssh2 2017-12-19 7.5
SSH server (sshd2) before 2.0.12 does not properly record login attempts if the connection is closed before the maximum number of tries, allowing a remote attacker to guess the password without showing up in the audit logs.
CVE-2001-0553 1 Ssh 1 Secure Shell 2017-10-10 7.2
SSH Secure Shell 3.0.0 on Unix systems does not properly perform password authentication to the sshd2 daemon, which allows local users to gain access to accounts with short password fields, such as locked accounts that use "NP" in the password field.
CVE-2001-0364 1 Ssh 1 Ssh2 2017-10-10 5.0
SSH Communications Security sshd 2.4 for Windows allows remote attackers to create a denial of service via a large number of simultaneous connections.
CVE-2001-0259 1 Ssh 1 Ssh 2017-10-10 3.6
ssh-keygen in ssh 1.2.27 - 1.2.30 with Secure-RPC can allow local attackers to recover a SUN-DES-1 magic phrase generated by another user, which the attacker can use to decrypt that user's private key file.
CVE-2000-0575 1 Ssh 1 Ssh 2017-10-10 7.2
SSH 1.2.27 with Kerberos authentication support stores Kerberos tickets in a file which is created in the current directory of the user who is logging in, which could allow remote attackers to sniff the ticket cache if the home directory is...
CVE-1999-1159 1 Ssh 1 Ssh2 2017-10-10 4.6
SSH 2.0.11 and earlier allows local users to request remote forwarding from privileged ports without being root.
CVE-2007-2063 1 Ssh 1 Tectia Server 2017-07-29 4.4
SSH Tectia Server for IBM z/OS before 5.4.0 uses insecure world-writable permissions for (1) the server pid file, which allows local users to cause arbitrary processes to be stopped, or (2) when _BPX_BATCH_UMASK is missing from the environment,...
CVE-2006-4316 1 Ssh 1 Tectia Manager 2017-07-20 7.2
SSH Tectia Management Agent 2.1.2 allows local users to gain root privileges by running a program called sshd, which is obtained from a process listing when the "Restart" action is selected from the Management server GUI, which causes the agent...
CVE-2006-4315 1 Ssh 4 Tectia Manager, Tectia Server, Tectia Client and 1 more 2017-07-20 7.2
Unquoted Windows search path vulnerability in multiple SSH Tectia products, including Client/Server/Connector 5.0.0 and 5.0.1 and Client/Server before 4.4.5, and Manager 2.12 and earlier, when running on Windows, might allow local users to gain...
CVE-2003-1120 1 Ssh 1 Tectia Server 2017-07-11 3.7
Race condition in SSH Tectia Server 4.0.3 and 4.0.4 for Unix, when the password change plugin (ssh-passwd-plugin) is enabled, allows local users to obtain the server's private key.
CVE-2002-1715 1 Ssh 2 Ssh, Ssh2 2017-07-11 7.2
SSH 1 through 3, and possibly other versions, allows local users to bypass restricted shells such as rbash or rksh by uploading a script to a world-writeable directory, then executing that script to gain normal shell access.
CVE-2002-1646 1 Ssh 1 Secure Shell For Servers 2017-07-11 7.5
SSH Secure Shell for Servers 3.0.0 to 3.1.1 allows remote attackers to override the AllowedAuthentications configuration and use less secure authentication schemes (e.g. password) than configured for the server.
CVE-2002-1645 1 Ssh 1 Ssh2 2017-07-11 10.0
Buffer overflow in the URL catcher feature for SSH Secure Shell for Workstations client 3.1 to 3.2.0 allows remote attackers to execute arbitrary code via a long URL.