CyberSec.Space Logo
CVEブラウザに戻る

CVE-2002-0640

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1650%
EPSS Percentile42.69th
Published2002年7月3日
Last Modified2026年4月16日

Vulnerability Description

Buffer overflow in sshd in OpenSSH 2.3.1 through 3.3 may allow remote attackers to execute arbitrary code via a large number of responses during challenge response authentication when OpenBSD is using PAM modules with interactive keyboard authentication (PAMAuthenticationViaKbdInt).

Affected Platforms (CPE)

📦
Openbsd

Openssh

= 1.2.2
📦
Openbsd

Openssh

= 1.2.3
📦
Openbsd

Openssh

= 2.1
📦
Openbsd

Openssh

= 2.1.1
📦
Openbsd

Openssh

= 2.2
📦
Openbsd

Openssh

= 2.3
📦
Openbsd

Openssh

= 2.5
📦
Openbsd

Openssh

= 2.5.1
📦
Openbsd

Openssh

= 2.5.2
📦
Openbsd

Openssh

= 2.9
📦
Openbsd

Openssh

= 2.9.9
📦
Openbsd

Openssh

= 2.9p1
📦
Openbsd

Openssh

= 2.9p2
📦
Openbsd

Openssh

= 3.0
📦
Openbsd

Openssh

= 3.0.1
📦
Openbsd

Openssh

= 3.0.1p1
📦
Openbsd

Openssh

= 3.0.2
📦
Openbsd

Openssh

= 3.0.2p1
📦
Openbsd

Openssh

= 3.0p1
📦
Openbsd

Openssh

= 3.1
📦
Openbsd

Openssh

= 3.1p1
📦
Openbsd

Openssh

= 3.2
📦
Openbsd

Openssh

= 3.2.2p1
📦
Openbsd

Openssh

= 3.2.3p1
📦
Openbsd

Openssh

= 3.3
📦
Openbsd

Openssh

= 3.3p1

References & Advisories

🔗 ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2002-030.0.txt
🔗 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000502
🔗 http://marc.info/?l=bugtraq&m=102514371522793&w=2
🔗 http://marc.info/?l=bugtraq&m=102514631524575&w=2
🔗 http://marc.info/?l=bugtraq&m=102521542826833&w=2
🔗 http://marc.info/?l=bugtraq&m=102532054613894&w=2
🔗 http://www.cert.org/advisories/CA-2002-18.html
🔗 http://www.debian.org/security/2002/dsa-134

関連する脆弱性情報

CVE-2003-069310.0

A "buffer management error" in buffer_append_space of buffer.c for OpenSSH before 3.7 may allow remote attackers to execute arbitr...

CVE-1999-066110.0

A system is running a version of software that was replaced with a Trojan Horse at one of its distribution points, such as (1) TCP...

CVE-2000-052510.0

OpenSSH does not properly drop privileges when the UseLogin option is enabled, which allows local users to execute arbitrary comma...

CVE-2003-078610.0

The SSH1 PAM challenge response authentication in OpenSSH 3.7.1 and 3.7.1p1, when Privilege Separation is disabled, does not check...