Back to search
CVE-2002-0640
Published: Apr 2, 2003
Modified: Aug 8, 2024
PUBLISHED
Description
Buffer overflow in sshd in OpenSSH 2.3.1 through 3.3 may allow remote attackers to execute arbitrary code via a large number of responses during challenge response authentication when OpenBSD is using PAM modules with interactive keyboard authentication (PAMAuthenticationViaKbdInt).
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
DSA-134
vendor-advisory
RHSA-2002:127
vendor-advisory
20020626 OpenSSH Security Advisory (adv.iss)
mailing-list
SuSE-SA:2002:024
vendor-advisory
839
vdb-entry
CA-2002-18
third-party-advisory
20020627 How to reproduce OpenSSH Overflow.
mailing-list
RHSA-2002:131
vendor-advisory
5093
vdb-entry
ESA-20020702-016
vendor-advisory
VU#369347
third-party-advisory
CLA-2002:502
vendor-advisory
HPSBUX0206-195
vendor-advisory
MDKSA-2002:040
vendor-advisory
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now