Back to search
CVE-2002-1357
Published: Dec 17, 2002
Modified: Aug 8, 2024
PUBLISHED
Description
Multiple SSH2 servers and clients do not properly handle packets or data elements with incorrect length specifiers, which may allow remote attackers to cause a denial of service or possibly execute arbitrary code, as demonstrated by the SSHredder SSH protocol test suite.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
1005812
vdb-entry
x_refsource_SECTRACK
CA-2002-36
third-party-advisory
x_refsource_CERT
oval:org.mitre.oval:def:5849
vdb-entry
signature
x_refsource_OVAL
VU#389665
third-party-advisory
x_refsource_CERT-VN
ssh-transport-length-bo(10868)
vdb-entry
x_refsource_XF
20021216 R7-0009: Vulnerabilities in SSH2 Implementations from Multiple Vendors
mailing-list
x_refsource_VULNWATCH
6405
vdb-entry
x_refsource_BID
1005813
vdb-entry
x_refsource_SECTRACK
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now