This script is copyright (C) 2001-2011 by EMAZE Networks S.p.A.
The SSH service running on the remote host has multiple
You are running a version of OpenSSH which is older than 3.0.2.
Versions prior than 3.0.2 have the following vulnerabilities :
- When the UseLogin feature is enabled, a local user
could export environment variables, resulting in
command execution as root. The UseLogin feature is
disabled by default. (CVE-2001-0872)
- A local information disclosure vulnerability.
Only FreeBSD hosts are affected by this issue.
See also :
Upgrade to OpenSSH 3.0.2 or apply the patch for prior
versions. (Available at: ftp://ftp.openbsd.org/pub/OpenBSD/OpenSSH)
Risk factor :
High / CVSS Base Score : 7.2
CVSS Temporal Score : 5.3
Public Exploit Available : false
Nessus Plugin ID: 10823 ()
Bugtraq ID: 3614
CVE ID: CVE-2001-0872CVE-2001-1029
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.