Vulnerability Name: | CVE-2000-0992 (CCN-5312) |
Assigned: | 2000-09-30 |
Published: | 2000-09-30 |
Updated: | 2018-05-03 |
Summary: | Directory traversal vulnerability in scp in sshd 1.2.xx allows a remote malicious scp server to overwrite arbitrary files via a .. (dot dot) attack.
|
CVSS v3 Severity: | 5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N)Exploitability Metrics: | Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None | Scope: | Scope (S): Unchanged
| Impact Metrics: | Confidentiality (C): None Integrity (I): Low Availibility (A): None |
|
CVSS v2 Severity: | 5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N)Exploitability Metrics: | Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): None | Impact Metrics: | Confidentiality (C): None Integrity (I): Partial Availibility (A): None | 5.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N)Exploitability Metrics: | Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
| Impact Metrics: | Confidentiality (C): None Integrity (I): Partial Availibility (A): None |
|
Vulnerability Type: | CWE-Other
|
Vulnerability Consequences: | File Manipulation |
References: | Source: BUGTRAQ Type: Exploit, Vendor Advisory 20000930 scp file transfer hole
Source: CCN Type: BugTraq Mailing List, Sat Sep 30 2000 - 14:21:17 CDT scp file transfer hole
Source: MITRE Type: CNA CVE-2000-0992
Source: MANDRAKE Type: UNKNOWN MDKSA-2000:057
Source: CCN Type: OSVDB ID: 1586 sshd scp Traversal Arbitrary File Overwrite
Source: BID Type: Exploit, Patch, Vendor Advisory 1742
Source: CCN Type: BID-1742 scp File Create/Overwrite Vulnerability
Source: CCN Type: MandrakeSoft Security Advisory MDKSA-2000:057 openssh
Source: XF Type: UNKNOWN scp-overwrite-files(5312)
Source: XF Type: UNKNOWN scp-overwrite-files(5312)
|
Vulnerable Configuration: | Configuration 1: cpe:/a:openbsd:openssh:1.2:*:*:*:*:*:*:*OR cpe:/a:openbsd:openssh:1.2.3:-:*:*:*:*:*:*OR cpe:/a:ssh:ssh:1.2.14:*:*:*:*:*:*:*OR cpe:/a:ssh:ssh:1.2.15:*:*:*:*:*:*:*OR cpe:/a:ssh:ssh:1.2.16:*:*:*:*:*:*:*OR cpe:/a:ssh:ssh:1.2.17:*:*:*:*:*:*:*OR cpe:/a:ssh:ssh:1.2.18:*:*:*:*:*:*:*OR cpe:/a:ssh:ssh:1.2.19:*:*:*:*:*:*:*OR cpe:/a:ssh:ssh:1.2.20:*:*:*:*:*:*:*OR cpe:/a:ssh:ssh:1.2.21:*:*:*:*:*:*:*OR cpe:/a:ssh:ssh:1.2.22:*:*:*:*:*:*:*OR cpe:/a:ssh:ssh:1.2.23:*:*:*:*:*:*:*OR cpe:/a:ssh:ssh:1.2.24:*:*:*:*:*:*:*OR cpe:/a:ssh:ssh:1.2.25:*:*:*:*:*:*:*OR cpe:/a:ssh:ssh:1.2.26:*:*:*:*:*:*:*OR cpe:/a:ssh:ssh:1.2.27:*:*:*:*:*:*:*OR cpe:/a:ssh:ssh:1.2.28:*:*:*:*:*:*:*OR cpe:/a:ssh:ssh:1.2.29:*:*:*:*:*:*:*OR cpe:/a:ssh:ssh:1.2.30:*:*:*:*:*:*:*OR cpe:/a:ssh:ssh:1.2.31:*:*:*:*:*:*:* Configuration CCN 1: cpe:/a:ssh:ssh:*:*:*:*:*:*:*:*OR cpe:/a:openbsd:openssh:*:*:*:*:*:*:*:*
Denotes that component is vulnerable |
BACK |