Zero-friction vulnerability management platform

Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.

Install Now

Available for macOS, Windows, and Linux

OpenSSH Channel Code Off by 1

Severity

Critical

Family

Gain a shell remotely

CVSSv2 Base

10.0

CVSSv2 Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Solution Type

Vendor Patch

Created

16 years ago

Modified

3 years ago

Share on Facebook
Share on LinkedIn
Share on Twitter

You are running a version of OpenSSH which is older than 3.1.

Insight

Versions prior than 3.1 are vulnerable to an off by one error that allows local users to gain root access, and it may be possible for remote users to similarly compromise the daemon for remote access. In addition, a vulnerable SSH client may be compromised by connecting to a malicious SSH daemon that exploits this vulnerability in the client code, thus compromising the client system.

Solution

Upgrade to OpenSSH 3.1 or apply the patch for prior versions.

Common Vulnerabilities and Exposures (CVE)

CVE-2002-0083

Zero-friction vulnerability management platform

Available for macOS, Windows, and Linux

OpenSSH Channel Code Off by 1

Severity

Family

CVSSv2 Base

CVSSv2 Vector

Solution Type

Created

Modified

Share

Insight

Solution

Common Vulnerabilities and Exposures (CVE)

Product

Customer Service

Company

Compliance

Zero-friction vulnerability management platform

Available for macOS, Windows, and Linux

OpenSSH Channel Code Off by 1

Information

Severity

Severity

Family

Family

CVSSv2 Base

CVSSv2 Base

CVSSv2 Vector

CVSSv2 Vector

Solution Type

Solution Type

Created

Created

Modified

Modified

Share

Summary

Insight

Insight

Solution

Solution

Common Vulnerabilities and Exposures (CVE)