CVE-2000-0575

EPSS 0.36%
Veröffentlicht 05.07.2000 04:00:00
Zuletzt bearbeitet 03.04.2025 01:03:51
Quelle cve@mitre.org
Teams Watchlist Login
Unerledigt Login

SSH 1.2.27 with Kerberos authentication support stores Kerberos tickets in a file which is created in the current directory of the user who is logging in, which could allow remote attackers to sniff the ticket cache if the home directory is installed on NFS.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 6

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Ssh ≫ Ssh Version1.2.27

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.36%	0.553

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.2	3.9	10	AV:L/AC:L/Au:N/C:C/I:C/A:C

http://marc.info/?l=bugtraq&m=96256265914116&w=2

http://www.securityfocus.com/bid/1426

Patch

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/4903

https://nvd.nist.gov/vuln/detail/CVE-2000-0575

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2000-0575

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2000-0575

EUVD