HIGH🇬🇧 English

CVE-2002-1359

CVSS 10.0v2.0pub. 2002-12-23upd. 2026-04-16

Multiple SSH2 servers and clients do not properly handle large packets or large fields, which may allow remote attackers to cause a denial of service or possibly execute arbitrary code via buffer overflow attacks, as demonstrated by the SSHredder SSH protocol test suite.

oryginał EN
CVSS Vector
AV:N/AC:L/Au:N/C:C/I:C/A:C
  • Cisco IOS

    OS
    Cisco
    12.0s12.0st12.1e12.1ea12.1t12.212.2s12.2t
  • Fissh Ssh Client

    APP
    Fissh
    1.0a_for_windows
  • Intersoft Securenetterm

    APP
    Intersoft
    5.4.1
  • Netcomposite Shellguard Ssh

    APP
    Netcomposite
    3.4.6
  • Pragma Systems Secureshell

    APP
    Pragma Systems
    2.0
  • Putty

    APP
    Putty
    0.480.490.53
  • Winscp

    APP
    Winscp
    2.0.0
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
RCEDoSMemory
CWE
Referencje

Powiązane podatności

CVE-2018-0171CRITICAL9.8⚠ KEVten sam produkt

A vulnerability in the Smart Install feature of Cisco IOS Software and Cisco IOS XE Software could allow an un...

CVE-2017-12240CRITICAL9.8⚠ KEVten sam produkt

The DHCP relay subsystem of Cisco IOS 12.2 through 15.6 and Cisco IOS XE Software contains a vulnerability tha...

CVE-2017-3881CRITICAL9.8⚠ KEVten sam produkt

A vulnerability in the Cisco Cluster Management Protocol (CMP) processing code in Cisco IOS and Cisco IOS XE S...

CVE-2025-20363CRITICAL9.0PL ✓ten sam produkt

RCE w web services Cisco ASA, FTD, IOS, IOS XE, IOS XR przez HTTP

CVE-2021-3331CRITICAL9.8ten sam produkt

WinSCP before 5.17.10 allows remote attackers to execute arbitrary programs when the URL handler encounters a ...