CVE-2001-0361

Currently unrated

Key Information:

Vendor: OpenBSD
Status: Openssh; Ssh
Vendor: CVE Published:; 27 June 2001

Summary

Implementations of SSH version 1.5, including (1) OpenSSH up to version 2.3.0, (2) AppGate, and (3) ssh-1 up to version 1.2.31, in certain configurations, allow a remote attacker to decrypt and/or alter traffic via a "Bleichenbacher attack" on PKCS#1 version 1.5.

References

http://www.securityfocus.com/bid/2344

vdb-entryx_refsource_BID

http://www.osvdb.org/2116

vdb-entryx_refsource_OSVDB

http://www.debian.org/security/2001/dsa-027

vendor-advisoryx_refsource_DEBIAN

Timeline

Vulnerability published
Jun 27, 2001
Vulnerability Reserved
May 24, 2001