VDB

GCVE-110-CERTCC-2003-602204

GCVE-110-CERTCC-2003-602204
Advisory Published
Vulnetix · Advisory published September 23, 2003
There is a vulnerability in the challenge authentication code of the Portable OpenSSH server when using the SSHv1 protocol and Pluggable Authentication Modules (PAM). This vulnerability could permit a remote attacker to log in to the system as any user, including potentially root, without using a password.

Risk Scores

certcc-cam
certcc-cam
impact18population5exploitation1widely_known15score_current6.58125ease_of_exploitation10

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›