SSH CRC-32 Compensation Attack Remote Overflow

Critical Nessus Plugin ID 10607


It is possible to execute arbitrary code on the remote host.


The remote host is running a version of SSH that is older than version 1.2.32, or a version of OpenSSH that is older than 2.3.0.

The remote version of this software is vulnerable to a flaw known as a 'CRC-32 compensation attack' that could allow an attacker to gain a root shell on this host.


Upgrade to version 1.2.32 of SSH which solves this problem, or to version 2.3.0 of OpenSSH.

Plugin Details

Severity: Critical

ID: 10607

File Name: ssh_crc32.nasl

Version: $Revision: 1.38 $

Type: remote

Family: Misc.

Published: 2001/02/09

Modified: 2016/06/20

Dependencies: 10267

Risk Information

Risk Factor: Critical


Base Score: 10

Temporal Score: 9.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:F/RL:ND/RC:ND

Vulnerability Information

Exploit Available: true

Exploit Ease: Exploits are available

Vulnerability Publication Date: 2001/02/08

Reference Information

CVE: CVE-2001-0144

BID: 2347

OSVDB: 795