CVSS: 10.0EPSS: 12%CPEs: 13EXPL: 3CVE-2001-0144 – SSH (x2) - Remote Command Execution
https://notcve.org/view.php?id=CVE-2001-0144
CORE SDI SSH1 CRC-32 compensation attack detector allows remote attackers to execute arbitrary commands on an SSH server or client via an integer overflow. • https://www.exploit-db.com/exploits/349 https://www.exploit-db.com/exploits/20617 http://marc.info/?l=bugtraq&m=98168366406903&w=2 http://razor.bindview.com/publish/advisories/adv_ssh1crc.html http://www.cert.org/advisories/CA-2001-35.html http://www.osvdb.org/503 http://www.osvdb.org/795 http://www.securityfocus.com/bid/2347 https://exchange.xforce.ibmcloud.com/vulnerabilities/6083 •
CVSS: 5.0EPSS: 0%CPEs: 8EXPL: 0CVE-2001-1474
https://notcve.org/view.php?id=CVE-2001-1474
SSH before 2.0 disables host key checking when connecting to the localhost, which allows remote attackers to silently redirect connections to the localhost by poisoning the client's DNS cache. • http://www.kb.cert.org/vuls/id/786900 https://exchange.xforce.ibmcloud.com/vulnerabilities/6604 •
CVSS: 7.5EPSS: 0%CPEs: 8EXPL: 0CVE-2001-1473
https://notcve.org/view.php?id=CVE-2001-1473
The SSH-1 protocol allows remote servers to conduct man-in-the-middle attacks and replay a client challenge response to a target server by creating a Session ID that matches the Session ID of the target, but which uses a public key pair that is weaker than the target's public key, which allows the attacker to compute the corresponding private key and use the target's Session ID with the compromised key pair to masquerade as the target. • http://www.kb.cert.org/vuls/id/684820 https://exchange.xforce.ibmcloud.com/vulnerabilities/6603 • CWE-310: Cryptographic Issues •
CVSS: 5.0EPSS: 0%CPEs: 8EXPL: 0CVE-2001-1470
https://notcve.org/view.php?id=CVE-2001-1470
The IDEA cipher as implemented by SSH1 does not protect the final block of a message against modification, which allows remote attackers to modify the block without detection by changing its cyclic redundancy check (CRC) to match the modifications to the message. • http://www.kb.cert.org/vuls/id/315308 https://exchange.xforce.ibmcloud.com/vulnerabilities/6472 •
CVSS: 5.0EPSS: 0%CPEs: 8EXPL: 1CVE-2001-1469
https://notcve.org/view.php?id=CVE-2001-1469
The RC4 stream cipher as used by SSH1 allows remote attackers to modify messages without detection by XORing the original message's cyclic redundancy check (CRC) with the CRC of a mask consisting of all the bits of the original message that were modified. • http://www.kb.cert.org/vuls/id/25309 https://exchange.xforce.ibmcloud.com/vulnerabilities/6449 •