7.2

CVE-2001-0553

Exploit

EPSS 0.22%
Published 14.08.2001 04:00:00
Last modified 03.04.2025 01:03:51
Source cve@mitre.org
Teams watchlist Login
Open Login

SSH Secure Shell 3.0.0 on Unix systems does not properly perform password authentication to the sshd2 daemon, which allows local users to gain access to accounts with short password fields, such as locked accounts that use "NP" in the password field.

Affected products Warnungen 0 Metrics 2 CWE 0 References 10

Data is provided by the National Vulnerability Database (NVD)

Ssh ≫ Secure Shell Version3.0.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.22%	0.421

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.2	3.9	10	AV:L/AC:L/Au:N/C:C/I:C/A:C

http://archives.neohapsis.com/archives/bugtraq/2001-07/0486.html

Patch

Vendor Advisory

Exploit

http://www.ciac.org/ciac/bulletins/l-121.shtml

http://www.kb.cert.org/vuls/id/737451

US Government Resource

http://www.osvdb.org/586

http://www.securityfocus.com/bid/3078

http://www.ssh.com/products/ssh/exploit.cfm

https://exchange.xforce.ibmcloud.com/vulnerabilities/6868

https://nvd.nist.gov/vuln/detail/CVE-2001-0553

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2001-0553

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2001-0553

EUVD