- EPSS 2.47%
- Veröffentlicht 25.04.2007 16:19:00
- Zuletzt bearbeitet 16.06.2026 22:39:12
OpenSSH 4.6 and earlier, when ChallengeResponseAuthentication is enabled, allows remote attackers to determine the existence of user accounts by attempting to authenticate via S/KEY, which displays a different response if the user account exists, a s...
CVE-2006-5794
- EPSS 2.68%
- Veröffentlicht 08.11.2006 20:07:00
- Zuletzt bearbeitet 16.06.2026 22:31:53
Unspecified vulnerability in the sshd Privilege Separation Monitor in OpenSSH before 4.5 causes weaker verification that authentication has been successful, which might allow attackers to bypass authentication. NOTE: as of 20061108, it is believed th...
CVE-2006-5229
- EPSS 54.21%
- Veröffentlicht 10.10.2006 23:07:00
- Zuletzt bearbeitet 16.06.2026 22:30:47
OpenSSH portable 4.1 on SUSE Linux, and possibly other platforms and versions, and possibly under limited configurations, allows remote attackers to determine valid usernames via timing discrepancies in which responses take longer for valid usernames...
- EPSS 14.74%
- Veröffentlicht 29.09.2006 00:07:00
- Zuletzt bearbeitet 16.06.2026 22:30:09
packet.c in ssh in OpenSSH allows remote attackers to cause a denial of service (crash) by sending an invalid protocol sequence with USERAUTH_SUCCESS before NEWKEYS, which causes newkeys[mode] to be NULL.
CVE-2006-5051
- EPSS 44.96%
- Veröffentlicht 27.09.2006 23:07:00
- Zuletzt bearbeitet 16.06.2026 22:30:24
Signal handler race condition in OpenSSH before 4.4 allows remote attackers to cause a denial of service (crash), and possibly execute arbitrary code if GSSAPI authentication is enabled, via unspecified vectors that lead to a double-free.
- EPSS 2.8%
- Veröffentlicht 27.09.2006 23:07:00
- Zuletzt bearbeitet 16.06.2026 22:30:24
Unspecified vulnerability in portable OpenSSH before 4.4, when running on some platforms, allows remote attackers to determine the validity of usernames via unknown vectors involving a GSSAPI "authentication abort."
CVE-2006-4924
- EPSS 34.67%
- Veröffentlicht 27.09.2006 01:07:00
- Zuletzt bearbeitet 16.06.2026 22:30:08
sshd in OpenSSH before 4.4, when using the version 1 SSH protocol, allows remote attackers to cause a denial of service (CPU consumption) via an SSH packet that contains duplicate blocks, which is not properly handled by the CRC compensation attack d...
- EPSS 1.88%
- Veröffentlicht 07.03.2006 02:02:00
- Zuletzt bearbeitet 16.06.2026 22:21:28
OpenSSH on FreeBSD 5.3 and 5.4, when used with OpenPAM, does not properly handle when a forked child process terminates during PAM authentication, which allows remote attackers to cause a denial of service (client connection refusal) by connecting mu...
CVE-2006-0225
- EPSS 0.47%
- Veröffentlicht 25.01.2006 11:03:00
- Zuletzt bearbeitet 16.06.2026 22:20:08
scp in OpenSSH 4.2p1 allows attackers to execute arbitrary commands via filenames that contain shell metacharacters or spaces, which are expanded twice.
- EPSS 2.2%
- Veröffentlicht 06.09.2005 17:03:00
- Zuletzt bearbeitet 16.06.2026 22:15:41
OpenSSH 4.0, and other versions before 4.2, does not properly handle dynamic port forwarding ("-D" option) when a listen address is not provided, which may cause OpenSSH to enable the GatewayPorts functionality.