CVE-2001-0361

Description

Implementations of SSH version 1.5, including (1) OpenSSH up to version 2.3.0, (2) AppGate, and (3) ssh-1 up to version 1.2.31, in certain configurations, allow a remote attacker to decrypt and/or alter traffic via a "Bleichenbacher attack" on PKCS#1 version 1.5.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/6082

http://www.securityfocus.com/bid/2344

http://www.osvdb.org/2116

http://www.novell.com/linux/security/advisories/adv004_ssh.html

http://www.debian.org/security/2001/dsa-086

http://www.debian.org/security/2001/dsa-027

http://www.debian.org/security/2001/dsa-023

http://www.ciac.org/ciac/bulletins/l-047.shtml

http://marc.info/?l=bugtraq&m=98158450021686&w=2

Details

Source: Mitre, NVD

Risk Information

CVSS v2

CVSS v3