CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2000-0999
https://notcve.org/view.php?id=CVE-2000-0999
29 Nov 2000 — Format string vulnerabilities in OpenBSD ssh program (and possibly other BSD-based operating systems) allow attackers to gain root privileges. • ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.7/common/028_format_strings.patch •
CVSS: 10.0EPSS: 0%CPEs: 3EXPL: 0CVE-2000-0525
https://notcve.org/view.php?id=CVE-2000-0525
08 Jun 2000 — OpenSSH does not properly drop privileges when the UseLogin option is enabled, which allows local users to execute arbitrary commands by providing the command to the ssh daemon. • http://archives.neohapsis.com/archives/bugtraq/2000-06/0065.html •
CVSS: 9.8EPSS: 0%CPEs: 46EXPL: 0CVE-2000-0217
https://notcve.org/view.php?id=CVE-2000-0217
24 Feb 2000 — The default configuration of SSH allows X forwarding, which could allow a remote attacker to control a client's X sessions via a malicious xauth program. • http://www.securityfocus.com/bid/1006 •
CVSS: 9.8EPSS: 0%CPEs: 30EXPL: 0CVE-2000-0143
https://notcve.org/view.php?id=CVE-2000-0143
11 Feb 2000 — The SSH protocol server sshd allows local users without shell access to redirect a TCP connection through a service that uses the standard system password database for authentication, such as POP or FTP. • https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0143 •
CVSS: 9.1EPSS: 0%CPEs: 1EXPL: 0CVE-1999-1010
https://notcve.org/view.php?id=CVE-1999-1010
14 Dec 1999 — An SSH 1.2.27 server allows a client to use the "none" cipher, even if it is not allowed by the server policy. • http://marc.info/?l=bugtraq&m=94519142415338&w=2 •