7.2

CVE-2001-0553

Exploit

EPSS 0.22%
Veröffentlicht 14.08.2001 04:00:00
Zuletzt bearbeitet 03.04.2025 01:03:51
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

SSH Secure Shell 3.0.0 on Unix systems does not properly perform password authentication to the sshd2 daemon, which allows local users to gain access to accounts with short password fields, such as locked accounts that use "NP" in the password field.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 10

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Ssh ≫ Secure Shell Version3.0.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.22%	0.421

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.2	3.9	10	AV:L/AC:L/Au:N/C:C/I:C/A:C

http://archives.neohapsis.com/archives/bugtraq/2001-07/0486.html

Patch

Vendor Advisory

Exploit

http://www.ciac.org/ciac/bulletins/l-121.shtml

http://www.kb.cert.org/vuls/id/737451

US Government Resource

http://www.osvdb.org/586

http://www.securityfocus.com/bid/3078

http://www.ssh.com/products/ssh/exploit.cfm

https://exchange.xforce.ibmcloud.com/vulnerabilities/6868

https://nvd.nist.gov/vuln/detail/CVE-2001-0553

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2001-0553

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2001-0553

EUVD