CVE-2003-0386

Risk Scores

Affected Products

Exploit Intelligence

• CVE-2024-6387, also known as RegreSSHion, is a high-severity vulnerability found in OpenSSH servers (sshd) running on glibc-based Linux systems. It is a regression of a previously fixed vulnerability (CVE-2006-5051), which means the issue was reintroduced in newer versions of OpenSSH. (github-poc)
• CVE-2024-6387, also known as RegreSSHion, is a high-severity vulnerability found in OpenSSH servers (sshd) running on glibc-based Linux systems. It is a regression of a previously fixed vulnerability (CVE-2006-5051), which means the issue was reintroduced in newer versions of OpenSSH. (github-poc)
• CVE-2024-6387, also known as RegreSSHion, is a high-severity vulnerability found in OpenSSH servers (sshd) running on glibc-based Linux systems. It is a regression of a previously fixed vulnerability (CVE-2006-5051), which means the issue was reintroduced in newer versions of OpenSSH. (github-poc)
• CVE-2024-6387, also known as RegreSSHion, is a high-severity vulnerability found in OpenSSH servers (sshd) running on glibc-based Linux systems. It is a regression of a previously fixed vulnerability (CVE-2006-5051), which means the issue was reintroduced in newer versions of OpenSSH. (github-poc)
• A security regression (CVE-2006-5051) was discovered in OpenSSH's server (sshd). There is a race condition which can lead to sshd to handle some signals in an unsafe manner. An unauthenticated, remote attacker may be able to trigger it by failing to authenticate within a set time period. (github-poc)
• A security regression (CVE-2006-5051) was discovered in OpenSSH's server (sshd). There is a race condition which can lead to sshd to handle some signals in an unsafe manner. An unauthenticated, remote attacker may be able to trigger it by failing to authenticate within a set time period. (github-poc)
• A security regression (CVE-2006-5051) was discovered in OpenSSH's server (sshd). There is a race condition which can lead to sshd to handle some signals in an unsafe manner. An unauthenticated, remote attacker may be able to trigger it by failing to authenticate within a set time period. (github-poc)
• A security regression (CVE-2006-5051) was discovered in OpenSSH's server (sshd). There is a race condition which can lead to sshd to handle some signals in an unsafe manner. An unauthenticated, remote attacker may be able to trigger it by failing to authenticate within a set time period. (github-poc)
• Bulk Scanning Tool for OpenSSH CVE-2024-6387, CVE-2006-5051 , CVE-2008-4109 and others. (github-poc)
• Bulk Scanning Tool for OpenSSH CVE-2024-6387, CVE-2006-5051 , CVE-2008-4109 and others. (github-poc)

…and 22 more exploits

Timeline

• Jun 10, 2003 CVE Published
• Feb 4, 2022 EPSS Score
• Mar 29, 2022 EPSS Score
• Jul 12, 2022 EPSS Score
• Sep 4, 2022 EPSS Score
• Dec 18, 2022 EPSS Score
• Feb 9, 2023 EPSS Score
• Apr 3, 2023 EPSS Score
• May 25, 2023 EPSS Score
• Jul 17, 2023 EPSS Score
• Sep 8, 2023 EPSS Score
• Oct 30, 2023 EPSS Score

References

• None advisory
• http://www.vmware.com/support/vi3/doc/esx-3069097-patch.html url
• RHSA-2006:0298 vendor-advisory
• 23680 third-party-advisory
• VU#978316 third-party-advisory
• oval:org.mitre.oval:def:9894 vdb
• http://lists.apple.com/mhonarc/security-announce/msg00038.html url
• 7831 vdb
• 21262 third-party-advisory
• 21129 third-party-advisory
• 20030605 OpenSSH remote clent address restriction circumvention mailing-list
• 21724 third-party-advisory
• http://support.avaya.com/elmodocs2/security/ASA-2006-174.htm url
• http://www.vmware.com/support/vi3/doc/esx-9986131-patch.html url
• 22196 third-party-advisory
• RHSA-2006:0698 vendor-advisory
• 20060703-01-P vendor-advisory
• https://nvd.nist.gov/vuln/detail/CVE-2003-0386 advisory