TCP/IP Vulnerability in CORE SDI SSH Product
CVE-2001-0144

Currently unrated

Key Information:

Vendor

OpenBSD
Status
Openssh
Ssh
Vendor
CVE Published:
12 March 2001

What is CVE-2001-0144?

The CORE SDI SSH1 CRC-32 compensation attack detector vulnerability enables remote attackers to exploit the integer overflow flaw in the SSH1 protocol. By leveraging this weakness, attackers can execute arbitrary commands on affected SSH servers or clients, posing a significant risk to network integrity and data confidentiality. This vulnerability underscores the importance of maintaining updated security protocols and systems to defend against potential exploitation.

References

http://www.securityfocus.com/bid/2347
vdb-entryx_refsource_BID
https://exchange.xforce.ibmcloud.com/vulnerabilities/6083
vdb-entryx_refsource_XF
http://www.osvdb.org/503
vdb-entryx_refsource_OSVDB

EPSS Score

34% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.