cvelistv5 - CVE-2001-0080

CVE-2001-0080

Vulnerability from cvelistv5

Published

2001-05-07 04:00

Modified

2024-08-08 04:06

Severity ?

Summary

Cisco Catalyst 6000, 5000, or 4000 switches allow remote attackers to cause a denial of service by connecting to the SSH service with a non-SSH client, which generates a protocol mismatch error.

References

URL	Tags
cve@mitre.org	http://www.cisco.com/warp/public/707/catalyst-ssh-protocolmismatch-pub.shtml	Patch, Vendor Advisory
cve@mitre.org	http://www.securityfocus.com/bid/2117
cve@mitre.org	https://exchange.xforce.ibmcloud.com/vulnerabilities/5760

Impacted products

▼	Vendor	Product
	n/a	n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-08T04:06:55.334Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "cisco-catalyst-ssh-mismatch(5760)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/5760"
          },
          {
            "name": "2117",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/2117"
          },
          {
            "name": "20001213 Cisco Catalyst SSH Protocol Mismatch Vulnerability",
            "tags": [
              "vendor-advisory",
              "x_refsource_CISCO",
              "x_transferred"
            ],
            "url": "http://www.cisco.com/warp/public/707/catalyst-ssh-protocolmismatch-pub.shtml"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2000-12-13T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Cisco Catalyst 6000, 5000, or 4000 switches allow remote attackers to cause a denial of service by connecting to the SSH service with a non-SSH client, which generates a protocol mismatch error."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2005-11-02T10:00:00",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "cisco-catalyst-ssh-mismatch(5760)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/5760"
        },
        {
          "name": "2117",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/2117"
        },
        {
          "name": "20001213 Cisco Catalyst SSH Protocol Mismatch Vulnerability",
          "tags": [
            "vendor-advisory",
            "x_refsource_CISCO"
          ],
          "url": "http://www.cisco.com/warp/public/707/catalyst-ssh-protocolmismatch-pub.shtml"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2001-0080",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Cisco Catalyst 6000, 5000, or 4000 switches allow remote attackers to cause a denial of service by connecting to the SSH service with a non-SSH client, which generates a protocol mismatch error."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "cisco-catalyst-ssh-mismatch(5760)",
              "refsource": "XF",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/5760"
            },
            {
              "name": "2117",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/2117"
            },
            {
              "name": "20001213 Cisco Catalyst SSH Protocol Mismatch Vulnerability",
              "refsource": "CISCO",
              "url": "http://www.cisco.com/warp/public/707/catalyst-ssh-protocolmismatch-pub.shtml"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2001-0080",
    "datePublished": "2001-05-07T04:00:00",
    "dateReserved": "2001-02-01T00:00:00",
    "dateUpdated": "2024-08-08T04:06:55.334Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "meta": {
    "nvd": "{\"cve\":{\"id\":\"CVE-2001-0080\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2001-02-12T05:00:00.000\",\"lastModified\":\"2017-10-10T01:29:34.607\",\"vulnStatus\":\"Modified\",\"descriptions\":[{\"lang\":\"en\",\"value\":\"Cisco Catalyst 6000, 5000, or 4000 switches allow remote attackers to cause a denial of service by connecting to the SSH service with a non-SSH client, which generates a protocol mismatch error.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:N/I:N/A:P\",\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"PARTIAL\",\"baseScore\":5.0},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":10.0,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-Other\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:cisco:catalyst_4000:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"105544F7-F57E-4B22-921C-E5EEA82B5CC4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:cisco:catalyst_5000:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"38E8BD58-5E55-4F07-B115-3BE78D7B2AD6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:cisco:catalyst_6000:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4B75201F-F007-4612-A3F0-ABC75C730F94\"}]}]}],\"references\":[{\"url\":\"http://www.cisco.com/warp/public/707/catalyst-ssh-protocolmismatch-pub.shtml\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/2117\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/5760\",\"source\":\"cve@mitre.org\"}]}}"
  }
}

Cisco Catalyst 6000, 5000, or 4000 switches allow remote attackers to cause a denial of service by connecting to the SSH service with a non-SSH client, which generates a protocol mismatch error. There is a buffer overflow in the IBM AIX setclock command that may allow local attackers to gain root privileges. Cisco Catalyst 6000, 5000, or 4000 switches are vulnerable. This vulnerability results in a protocol mismatch. Microsoft Internet Explorer DBCS Remote Memory Corruption Vulnerability

By Sowhat of Nevis Labs Date: 2006.04.11

http://www.nevisnetworks.com http://secway.org/advisory/AD20060411.txt http://www.microsoft.com/technet/security/bulletin/MS06-013.mspx

CVE: CVE-2006-1189

Vendor Microsoft Inc.

Products affected:

Internet Explorer 6 Service Pack 1 on Microsoft Windows 2000 Service Pack 4 and Microsoft Windows XP Service Pack 1 Internet Explorer 6 for Microsoft Windows XP Service Pack 2 Internet Explorer 6 for Microsoft Windows Server 2003 Internet Explorer 6 Service Pack 1 on Microsoft Windows 98, Microsoft Windows 98 SE, and Microsoft Windows Millennium Edition

This vulnerability affects systems that use Double-Byte Character Sets. Systems that are affected are Windows language versions that use a Double Byte Character Set language. Examples of languages that use DBCS are Chinese, Japanese, and Korean languages. Customers using other language versions of Windows might also be affected if "Language for non-Unicode programs" has been set to a Double Byte Character Set language.

Overview:

There exists a buffer overflow in Microsoft Internet Explorer in the parsing of DBCS URLS.

This vulnerability could allow an attacker to execute arbitrary code on the victim's system when the victim visits a web page or views an HTML email message.

This attack may be utilized wherever IE parses HTML, such as webpages, email, newsgroups, and within applications utilizing web-browsing functionality.

Details:

URLMON.DLL does not properly validate IDN containing double-byte character sets (DBCS), which may lead to remote code execution.

Exploiting this vulnerability seems to need a lot of more work but we believe that exploitation is possible.

POC:

No PoC will be released for this.

FIX:

Microsoft has released an update for Internet Explorer which is set to address this issue. This can be downloaded from:

http://www.microsoft.com/technet/security/bulletin/MS06-013.mspx

Vendor Response:

2005.12.29 Vendor notified via secure@microsoft.com 2005.12.29 Vendor responded 2006.04.11 Vendor released MS06-0xx patch 2006.04.11 Advisory released

Common Vulnerabilities and Exposures (CVE) Information:

The Common Vulnerabilities and Exposures (CVE) project has assigned the following names to these issues. These are candidates for inclusion in the CVE list (http://cve.mitre.org), which standardizes names for security problems.

    CVE-2006-1189

Greetings to Lennart@MS, Chi, OYXin, Narasimha Datta, all Nevis Labs guys, all XFocus and 0x557 guys :)

References:

http://www.microsoft.com/technet/security/bulletin/MS06-013.mspx
http://www.nsfocus.com/english/homepage/research/0008.htm
http://xforce.iss.net/xforce/xfdb/5729
http://www.securityfocus.com/bid/2100/discuss
http://www.inter-locale.com/whitepaper/IUC27-a303.html
http://blogs.msdn.com/michkap/archive/2005/10/28/486034.aspx
[Mozilla Firefox IDN "Host:" Buffer Overflow] http://www.security-protocols.com/advisory/sp-x17-advisory.txt
[Mozilla Firefox 1.5 Beta 1 IDN Buffer Overflow] http://www.security-protocols.com/advisory/sp-x18-advisory.txt
http://72.14.203.104/search?q=cache:Dxn-V4fil1IJ:developer.novell.com /research/devnotes/1995/may/02/05.htm

-- Sowhat http://secway.org "Life is like a bug, Do you know how to exploit it ?"

Show details on source website

JSON

To clipboard

{
  "@context": {
    "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
    "affected_products": {
      "@id": "https://www.variotdbs.pl/ref/affected_products"
    },
    "configurations": {
      "@id": "https://www.variotdbs.pl/ref/configurations"
    },
    "credits": {
      "@id": "https://www.variotdbs.pl/ref/credits"
    },
    "cvss": {
      "@id": "https://www.variotdbs.pl/ref/cvss/"
    },
    "description": {
      "@id": "https://www.variotdbs.pl/ref/description/"
    },
    "exploit_availability": {
      "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
    },
    "external_ids": {
      "@id": "https://www.variotdbs.pl/ref/external_ids/"
    },
    "iot": {
      "@id": "https://www.variotdbs.pl/ref/iot/"
    },
    "iot_taxonomy": {
      "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
    },
    "patch": {
      "@id": "https://www.variotdbs.pl/ref/patch/"
    },
    "problemtype_data": {
      "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
    },
    "references": {
      "@id": "https://www.variotdbs.pl/ref/references/"
    },
    "sources": {
      "@id": "https://www.variotdbs.pl/ref/sources/"
    },
    "sources_release_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
    },
    "sources_update_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
    },
    "threat_type": {
      "@id": "https://www.variotdbs.pl/ref/threat_type/"
    },
    "title": {
      "@id": "https://www.variotdbs.pl/ref/title/"
    },
    "type": {
      "@id": "https://www.variotdbs.pl/ref/type/"
    }
  },
  "@id": "https://www.variotdbs.pl/vuln/VAR-200102-0052",
  "affected_products": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "model": null,
        "scope": null,
        "trust": 2.4,
        "vendor": "ibm",
        "version": null
      },
      {
        "model": "catalyst 4000",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "*"
      },
      {
        "model": "catalyst 5000",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "*"
      },
      {
        "model": "catalyst 6000",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "*"
      },
      {
        "model": "catalyst 5000",
        "scope": null,
        "trust": 0.6,
        "vendor": "cisco",
        "version": null
      },
      {
        "model": "catalyst 4000",
        "scope": null,
        "trust": 0.6,
        "vendor": "cisco",
        "version": null
      },
      {
        "model": "catalyst 6000",
        "scope": null,
        "trust": 0.6,
        "vendor": "cisco",
        "version": null
      }
    ],
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#739201"
      },
      {
        "db": "CERT/CC",
        "id": "VU#808633"
      },
      {
        "db": "CERT/CC",
        "id": "VU#886953"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200102-072"
      },
      {
        "db": "NVD",
        "id": "CVE-2001-0080"
      }
    ]
  },
  "configurations": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/configurations#",
      "children": {
        "@container": "@list"
      },
      "cpe_match": {
        "@container": "@list"
      },
      "data": {
        "@container": "@list"
      },
      "nodes": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:h:cisco:catalyst_5000:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:h:cisco:catalyst_6000:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:h:cisco:catalyst_4000:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2001-0080"
      }
    ]
  },
  "credits": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/credits#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "First published in a Cisco security advisory regarding the issue on Nov 13, 2000.",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-200102-072"
      }
    ],
    "trust": 0.6
  },
  "cve": "CVE-2001-0080",
  "cvss": {
    "@context": {
      "cvssV2": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
      },
      "cvssV3": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
      },
      "severity": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/cvss/severity#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/severity"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "cvssV2": [
          {
            "acInsufInfo": false,
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "NVD",
            "availabilityImpact": "PARTIAL",
            "baseScore": 5.0,
            "confidentialityImpact": "NONE",
            "exploitabilityScore": 10.0,
            "impactScore": 2.9,
            "integrityImpact": "NONE",
            "obtainAllPrivilege": false,
            "obtainOtherPrivilege": false,
            "obtainUserPrivilege": false,
            "severity": "MEDIUM",
            "trust": 1.0,
            "userInteractionRequired": false,
            "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
            "version": "2.0"
          },
          {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "VULHUB",
            "availabilityImpact": "PARTIAL",
            "baseScore": 5.0,
            "confidentialityImpact": "NONE",
            "exploitabilityScore": 10.0,
            "id": "VHN-2902",
            "impactScore": 2.9,
            "integrityImpact": "NONE",
            "severity": "MEDIUM",
            "trust": 0.1,
            "vectorString": "AV:N/AC:L/AU:N/C:N/I:N/A:P",
            "version": "2.0"
          }
        ],
        "cvssV3": [],
        "severity": [
          {
            "author": "NVD",
            "id": "CVE-2001-0080",
            "trust": 1.0,
            "value": "MEDIUM"
          },
          {
            "author": "CARNEGIE MELLON",
            "id": "VU#739201",
            "trust": 0.8,
            "value": "7.09"
          },
          {
            "author": "CARNEGIE MELLON",
            "id": "VU#808633",
            "trust": 0.8,
            "value": "5.36"
          },
          {
            "author": "CARNEGIE MELLON",
            "id": "VU#872257",
            "trust": 0.8,
            "value": "7.09"
          },
          {
            "author": "CARNEGIE MELLON",
            "id": "VU#886953",
            "trust": 0.8,
            "value": "15.19"
          },
          {
            "author": "CNNVD",
            "id": "CNNVD-200102-072",
            "trust": 0.6,
            "value": "MEDIUM"
          },
          {
            "author": "VULHUB",
            "id": "VHN-2902",
            "trust": 0.1,
            "value": "MEDIUM"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#739201"
      },
      {
        "db": "CERT/CC",
        "id": "VU#808633"
      },
      {
        "db": "CERT/CC",
        "id": "VU#872257"
      },
      {
        "db": "CERT/CC",
        "id": "VU#886953"
      },
      {
        "db": "VULHUB",
        "id": "VHN-2902"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200102-072"
      },
      {
        "db": "NVD",
        "id": "CVE-2001-0080"
      }
    ]
  },
  "description": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/description#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Cisco Catalyst 6000, 5000, or 4000 switches allow remote attackers to cause a denial of service by connecting to the SSH service with a non-SSH client, which generates a protocol mismatch error. There is a buffer overflow in the IBM AIX setclock command that may allow local attackers to gain root privileges. Cisco Catalyst 6000, 5000, or 4000 switches are vulnerable. This vulnerability results in a protocol mismatch. Microsoft Internet Explorer DBCS Remote Memory Corruption Vulnerability\n\nBy Sowhat of Nevis Labs\nDate: 2006.04.11\n\nhttp://www.nevisnetworks.com\nhttp://secway.org/advisory/AD20060411.txt\nhttp://www.microsoft.com/technet/security/bulletin/MS06-013.mspx\n\n\nCVE: CVE-2006-1189\n\nVendor\nMicrosoft Inc. \n\nProducts affected:\n\nInternet Explorer 6 Service Pack 1 on Microsoft Windows 2000 Service Pack 4\n\tand Microsoft Windows XP Service Pack 1\nInternet Explorer 6 for Microsoft Windows XP Service Pack 2\nInternet Explorer 6 for Microsoft Windows Server 2003\nInternet Explorer 6 Service Pack 1 on Microsoft Windows 98, Microsoft\n\tWindows 98 SE, and Microsoft Windows Millennium Edition\n\n\n\nThis vulnerability affects systems that use Double-Byte Character Sets. \nSystems that are affected are Windows language versions that use a\nDouble Byte Character Set language. Examples of languages that use DBCS\nare Chinese, Japanese, and Korean languages. Customers using\nother language versions of Windows might also be affected if \"Language\nfor non-Unicode programs\" has been set to a Double Byte Character Set\nlanguage. \n\n\nOverview:\n\nThere exists a buffer overflow in Microsoft Internet Explorer in the\nparsing of DBCS URLS. \n\nThis vulnerability could allow an attacker to execute arbitrary code on the\nvictim\u0027s system when the victim visits a web page or views an HTML email\nmessage. \n\nThis attack may be utilized wherever IE parses HTML, such as webpages, email,\nnewsgroups, and within applications utilizing web-browsing functionality. \n\n\nDetails:\n\nURLMON.DLL does not properly validate IDN containing double-byte character\nsets (DBCS), which may lead to remote code execution. \n\nExploiting this vulnerability seems to need a lot of more work but we\nbelieve that\nexploitation is possible. \n\n\nPOC:\n\nNo PoC will be released for this. \n\n\nFIX:\n\nMicrosoft has released an update for Internet Explorer which is\nset to address this issue. This can be downloaded from:\n\nhttp://www.microsoft.com/technet/security/bulletin/MS06-013.mspx\n\n\nVendor Response:\n\n2005.12.29 Vendor notified via secure@microsoft.com\n2005.12.29 Vendor responded\n2006.04.11 Vendor released MS06-0xx patch\n2006.04.11 Advisory released\n\n\nCommon Vulnerabilities and Exposures (CVE) Information:\n\nThe Common Vulnerabilities and Exposures (CVE) project has assigned\nthe following names to these issues.  These are candidates for\ninclusion in the CVE list (http://cve.mitre.org), which standardizes\nnames for security problems. \n\n\n        CVE-2006-1189\n\n\nGreetings to Lennart@MS, Chi, OYXin, Narasimha Datta, all Nevis Labs guys,\n all XFocus and 0x557 guys :)\n\n\nReferences:\n\n1. http://www.microsoft.com/technet/security/bulletin/MS06-013.mspx\n2. http://www.nsfocus.com/english/homepage/research/0008.htm\n3. http://xforce.iss.net/xforce/xfdb/5729\n4. http://www.securityfocus.com/bid/2100/discuss\n5. http://www.inter-locale.com/whitepaper/IUC27-a303.html\n6. http://blogs.msdn.com/michkap/archive/2005/10/28/486034.aspx\n7. [Mozilla Firefox IDN \"Host:\" Buffer Overflow]\n   http://www.security-protocols.com/advisory/sp-x17-advisory.txt\n8. [Mozilla Firefox 1.5 Beta 1 IDN Buffer Overflow]\n   http://www.security-protocols.com/advisory/sp-x18-advisory.txt\n9. http://72.14.203.104/search?q=cache:Dxn-V4fil1IJ:developer.novell.com\n\t /research/devnotes/1995/may/02/05.htm\n\n\n\n\n\n\n\n--\nSowhat\nhttp://secway.org\n\"Life is like a bug, Do you know how to exploit it ?\"\n",
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2001-0080"
      },
      {
        "db": "CERT/CC",
        "id": "VU#739201"
      },
      {
        "db": "CERT/CC",
        "id": "VU#808633"
      },
      {
        "db": "CERT/CC",
        "id": "VU#872257"
      },
      {
        "db": "CERT/CC",
        "id": "VU#886953"
      },
      {
        "db": "VULHUB",
        "id": "VHN-2902"
      },
      {
        "db": "PACKETSTORM",
        "id": "45442"
      }
    ],
    "trust": 3.96
  },
  "exploit_availability": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/exploit_availability#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "reference": "https://www.scap.org.cn/vuln/vhn-2902",
        "trust": 0.1,
        "type": "unknown"
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-2902"
      }
    ]
  },
  "external_ids": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "db": "BID",
        "id": "2117",
        "trust": 1.7
      },
      {
        "db": "NVD",
        "id": "CVE-2001-0080",
        "trust": 1.7
      },
      {
        "db": "BID",
        "id": "2035",
        "trust": 0.8
      },
      {
        "db": "XF",
        "id": "5618",
        "trust": 0.8
      },
      {
        "db": "CERT/CC",
        "id": "VU#739201",
        "trust": 0.8
      },
      {
        "db": "BID",
        "id": "2033",
        "trust": 0.8
      },
      {
        "db": "XF",
        "id": "5620",
        "trust": 0.8
      },
      {
        "db": "CERT/CC",
        "id": "VU#808633",
        "trust": 0.8
      },
      {
        "db": "BID",
        "id": "2034",
        "trust": 0.8
      },
      {
        "db": "XF",
        "id": "5619",
        "trust": 0.8
      },
      {
        "db": "CERT/CC",
        "id": "VU#872257",
        "trust": 0.8
      },
      {
        "db": "BID",
        "id": "2032",
        "trust": 0.8
      },
      {
        "db": "XF",
        "id": "5621",
        "trust": 0.8
      },
      {
        "db": "CERT/CC",
        "id": "VU#886953",
        "trust": 0.8
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200102-072",
        "trust": 0.7
      },
      {
        "db": "XF",
        "id": "5760",
        "trust": 0.6
      },
      {
        "db": "CISCO",
        "id": "20001213 CISCO CATALYST SSH PROTOCOL MISMATCH VULNERABILITY",
        "trust": 0.6
      },
      {
        "db": "EXPLOIT-DB",
        "id": "20509",
        "trust": 0.1
      },
      {
        "db": "SEEBUG",
        "id": "SSVID-74382",
        "trust": 0.1
      },
      {
        "db": "VULHUB",
        "id": "VHN-2902",
        "trust": 0.1
      },
      {
        "db": "XF",
        "id": "5729",
        "trust": 0.1
      },
      {
        "db": "BID",
        "id": "2100",
        "trust": 0.1
      },
      {
        "db": "PACKETSTORM",
        "id": "45442",
        "trust": 0.1
      }
    ],
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#739201"
      },
      {
        "db": "CERT/CC",
        "id": "VU#808633"
      },
      {
        "db": "CERT/CC",
        "id": "VU#872257"
      },
      {
        "db": "CERT/CC",
        "id": "VU#886953"
      },
      {
        "db": "VULHUB",
        "id": "VHN-2902"
      },
      {
        "db": "PACKETSTORM",
        "id": "45442"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200102-072"
      },
      {
        "db": "NVD",
        "id": "CVE-2001-0080"
      }
    ]
  },
  "id": "VAR-200102-0052",
  "iot": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": true,
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-2902"
      }
    ],
    "trust": 0.01
  },
  "last_update_date": "2024-07-23T21:39:23.577000Z",
  "problemtype_data": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "problemtype": "NVD-CWE-Other",
        "trust": 1.0
      }
    ],
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2001-0080"
      }
    ]
  },
  "references": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/references#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "trust": 1.7,
        "url": "http://www.securityfocus.com/bid/2117"
      },
      {
        "trust": 1.7,
        "url": "http://www.cisco.com/warp/public/707/catalyst-ssh-protocolmismatch-pub.shtml"
      },
      {
        "trust": 1.6,
        "url": "http://techsupport.services.ibm.com/rs6000/aix.uhuic_getrec?args=dvhuron.boulder.ibm.com+dbaix+da139925+stiy08143+usbin"
      },
      {
        "trust": 1.6,
        "url": "http://techsupport.services.ibm.com/support/rs6000.support/fixsearch?fixdb=aix4\u0026srchtype=apar\u0026query=iy08143"
      },
      {
        "trust": 1.6,
        "url": "http://techsupport.services.ibm.com/rs6000/aix.uhuic_getrec?args=dvhuron.boulder.ibm.com+dbaix+da137627+stiy08287+usbin"
      },
      {
        "trust": 1.6,
        "url": "http://techsupport.services.ibm.com/support/rs6000.support/fixsearch?fixdb=aix4\u0026srchtype=apar\u0026query=iy08287"
      },
      {
        "trust": 1.1,
        "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/5760"
      },
      {
        "trust": 0.8,
        "url": "http://www.securityfocus.com/bid/2035"
      },
      {
        "trust": 0.8,
        "url": "http://xforce.iss.net/static/5618.php"
      },
      {
        "trust": 0.8,
        "url": "http://techsupport.services.ibm.com/rs6000/aix.uhuic_getrec?args=dvhuron.boulder.ibm.com+dbaix+da139817+stiy07831+usbin"
      },
      {
        "trust": 0.8,
        "url": "http://techsupport.services.ibm.com/support/rs6000.support/fixsearch?fixdb=aix4\u0026srchtype=apar\u0026query=iy07831"
      },
      {
        "trust": 0.8,
        "url": "http://techsupport.services.ibm.com/rs6000/aix.uhuic_getrec?args=dvhuron.boulder.ibm.com+dbaix+da137621+stiy07790+usbin"
      },
      {
        "trust": 0.8,
        "url": "http://techsupport.services.ibm.com/support/rs6000.support/fixsearch?fixdb=aix4\u0026srchtype=apar\u0026query=iy07790"
      },
      {
        "trust": 0.8,
        "url": "http://www.securityfocus.com/bid/2033"
      },
      {
        "trust": 0.8,
        "url": "http://xforce.iss.net/static/5620.php"
      },
      {
        "trust": 0.8,
        "url": "http://www.rs6000.ibm.com/idd500/usr/share/man/info/en_us/a_doc_lib/cmds/aixcmds2/digest.htm#a26p05a6"
      },
      {
        "trust": 0.8,
        "url": "http://www.securityfocus.com/bid/2034"
      },
      {
        "trust": 0.8,
        "url": "http://xforce.iss.net/static/5619.php"
      },
      {
        "trust": 0.8,
        "url": "http://www.rs6000.ibm.com/idd500/usr/share/man/info/en_us/a_doc_lib/cmds/aixcmds2/enq.htm#a200977f"
      },
      {
        "trust": 0.8,
        "url": "http://www.securityfocus.com/bid/2032"
      },
      {
        "trust": 0.8,
        "url": "http://xforce.iss.net/static/5621.php"
      },
      {
        "trust": 0.8,
        "url": "http://techsupport.services.ibm.com/rs6000/aix.uhuic_getrec?args=dvhuron.boulder.ibm.com+dbaix+da114623+stiy10721+usbin"
      },
      {
        "trust": 0.8,
        "url": "http://techsupport.services.ibm.com/support/rs6000.support/fixsearch?fixdb=aix4\u0026srchtype=apar\u0026query=iy10721"
      },
      {
        "trust": 0.8,
        "url": "http://techsupport.services.ibm.com/rs6000/aix.uhuic_getrec?args=dvhuron.boulder.ibm.com+dbaix+da123587+stiy08812+usbin"
      },
      {
        "trust": 0.8,
        "url": "http://techsupport.services.ibm.com/support/rs6000.support/fixsearch?fixdb=aix4\u0026srchtype=apar\u0026query=iy08812"
      },
      {
        "trust": 0.8,
        "url": "http://www.rs6000.ibm.com/doc_link/en_us/a_doc_lib/cmds/aixcmds5/setsenv.htm#wpg2f0frit"
      },
      {
        "trust": 0.6,
        "url": "http://xforce.iss.net/static/5760.php"
      },
      {
        "trust": 0.1,
        "url": "http://www.inter-locale.com/whitepaper/iuc27-a303.html"
      },
      {
        "trust": 0.1,
        "url": "http://xforce.iss.net/xforce/xfdb/5729"
      },
      {
        "trust": 0.1,
        "url": "http://www.security-protocols.com/advisory/sp-x17-advisory.txt"
      },
      {
        "trust": 0.1,
        "url": "http://www.nsfocus.com/english/homepage/research/0008.htm"
      },
      {
        "trust": 0.1,
        "url": "http://www.microsoft.com/technet/security/bulletin/ms06-013.mspx"
      },
      {
        "trust": 0.1,
        "url": "http://www.nevisnetworks.com"
      },
      {
        "trust": 0.1,
        "url": "http://blogs.msdn.com/michkap/archive/2005/10/28/486034.aspx"
      },
      {
        "trust": 0.1,
        "url": "http://www.security-protocols.com/advisory/sp-x18-advisory.txt"
      },
      {
        "trust": 0.1,
        "url": "http://secway.org"
      },
      {
        "trust": 0.1,
        "url": "http://www.securityfocus.com/bid/2100/discuss"
      },
      {
        "trust": 0.1,
        "url": "http://secway.org/advisory/ad20060411.txt"
      },
      {
        "trust": 0.1,
        "url": "http://cve.mitre.org),"
      },
      {
        "trust": 0.1,
        "url": "http://72.14.203.104/search?q=cache:dxn-v4fil1ij:developer.novell.com"
      }
    ],
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#739201"
      },
      {
        "db": "CERT/CC",
        "id": "VU#808633"
      },
      {
        "db": "CERT/CC",
        "id": "VU#872257"
      },
      {
        "db": "CERT/CC",
        "id": "VU#886953"
      },
      {
        "db": "VULHUB",
        "id": "VHN-2902"
      },
      {
        "db": "PACKETSTORM",
        "id": "45442"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200102-072"
      },
      {
        "db": "NVD",
        "id": "CVE-2001-0080"
      }
    ]
  },
  "sources": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "db": "CERT/CC",
        "id": "VU#739201"
      },
      {
        "db": "CERT/CC",
        "id": "VU#808633"
      },
      {
        "db": "CERT/CC",
        "id": "VU#872257"
      },
      {
        "db": "CERT/CC",
        "id": "VU#886953"
      },
      {
        "db": "VULHUB",
        "id": "VHN-2902"
      },
      {
        "db": "PACKETSTORM",
        "id": "45442"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200102-072"
      },
      {
        "db": "NVD",
        "id": "CVE-2001-0080"
      }
    ]
  },
  "sources_release_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2001-09-28T00:00:00",
        "db": "CERT/CC",
        "id": "VU#739201"
      },
      {
        "date": "2001-09-28T00:00:00",
        "db": "CERT/CC",
        "id": "VU#808633"
      },
      {
        "date": "2001-09-28T00:00:00",
        "db": "CERT/CC",
        "id": "VU#872257"
      },
      {
        "date": "2001-09-28T00:00:00",
        "db": "CERT/CC",
        "id": "VU#886953"
      },
      {
        "date": "2001-02-12T00:00:00",
        "db": "VULHUB",
        "id": "VHN-2902"
      },
      {
        "date": "2006-04-14T01:00:47",
        "db": "PACKETSTORM",
        "id": "45442"
      },
      {
        "date": "2001-02-12T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-200102-072"
      },
      {
        "date": "2001-02-12T05:00:00",
        "db": "NVD",
        "id": "CVE-2001-0080"
      }
    ]
  },
  "sources_update_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2001-09-28T00:00:00",
        "db": "CERT/CC",
        "id": "VU#739201"
      },
      {
        "date": "2001-09-28T00:00:00",
        "db": "CERT/CC",
        "id": "VU#808633"
      },
      {
        "date": "2001-09-28T00:00:00",
        "db": "CERT/CC",
        "id": "VU#872257"
      },
      {
        "date": "2001-09-28T00:00:00",
        "db": "CERT/CC",
        "id": "VU#886953"
      },
      {
        "date": "2017-10-10T00:00:00",
        "db": "VULHUB",
        "id": "VHN-2902"
      },
      {
        "date": "2005-05-02T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-200102-072"
      },
      {
        "date": "2017-10-10T01:29:34.607000",
        "db": "NVD",
        "id": "CVE-2001-0080"
      }
    ]
  },
  "threat_type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "remote",
    "sources": [
      {
        "db": "PACKETSTORM",
        "id": "45442"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200102-072"
      }
    ],
    "trust": 0.7
  },
  "title": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/title#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "IBM AIX setclock buffer overflow in remote timeserver argument",
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#739201"
      }
    ],
    "trust": 0.8
  },
  "type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "other",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-200102-072"
      }
    ],
    "trust": 0.6
  }
}

gsd-2001-0080

Vulnerability from gsd

Modified

2023-12-13 01:19

Details

Cisco Catalyst 6000, 5000, or 4000 switches allow remote attackers to cause a denial of service by connecting to the SSH service with a non-SSH client, which generates a protocol mismatch error.

Aliases

CVE-2001-0080

Aliases

CVE-2001-0080

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2001-0080",
    "description": "Cisco Catalyst 6000, 5000, or 4000 switches allow remote attackers to cause a denial of service by connecting to the SSH service with a non-SSH client, which generates a protocol mismatch error.",
    "id": "GSD-2001-0080"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2001-0080"
      ],
      "details": "Cisco Catalyst 6000, 5000, or 4000 switches allow remote attackers to cause a denial of service by connecting to the SSH service with a non-SSH client, which generates a protocol mismatch error.",
      "id": "GSD-2001-0080",
      "modified": "2023-12-13T01:19:01.449770Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2001-0080",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Cisco Catalyst 6000, 5000, or 4000 switches allow remote attackers to cause a denial of service by connecting to the SSH service with a non-SSH client, which generates a protocol mismatch error."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "cisco-catalyst-ssh-mismatch(5760)",
            "refsource": "XF",
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/5760"
          },
          {
            "name": "2117",
            "refsource": "BID",
            "url": "http://www.securityfocus.com/bid/2117"
          },
          {
            "name": "20001213 Cisco Catalyst SSH Protocol Mismatch Vulnerability",
            "refsource": "CISCO",
            "url": "http://www.cisco.com/warp/public/707/catalyst-ssh-protocolmismatch-pub.shtml"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:h:cisco:catalyst_5000:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:h:cisco:catalyst_6000:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:h:cisco:catalyst_4000:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2001-0080"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Cisco Catalyst 6000, 5000, or 4000 switches allow remote attackers to cause a denial of service by connecting to the SSH service with a non-SSH client, which generates a protocol mismatch error."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "NVD-CWE-Other"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "20001213 Cisco Catalyst SSH Protocol Mismatch Vulnerability",
              "refsource": "CISCO",
              "tags": [
                "Patch",
                "Vendor Advisory"
              ],
              "url": "http://www.cisco.com/warp/public/707/catalyst-ssh-protocolmismatch-pub.shtml"
            },
            {
              "name": "2117",
              "refsource": "BID",
              "tags": [],
              "url": "http://www.securityfocus.com/bid/2117"
            },
            {
              "name": "cisco-catalyst-ssh-mismatch(5760)",
              "refsource": "XF",
              "tags": [],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/5760"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 5.0,
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
            "version": "2.0"
          },
          "exploitabilityScore": 10.0,
          "impactScore": 2.9,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "MEDIUM",
          "userInteractionRequired": false
        }
      },
      "lastModifiedDate": "2017-10-10T01:29Z",
      "publishedDate": "2001-02-12T05:00Z"
    }
  }
}

ghsa-wmwf-3w9p-w4cj

Vulnerability from github

Published

2022-04-30 18:15

Modified

2022-04-30 18:15

Details

Cisco Catalyst 6000, 5000, or 4000 switches allow remote attackers to cause a denial of service by connecting to the SSH service with a non-SSH client, which generates a protocol mismatch error.

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2001-0080"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2001-02-12T05:00:00Z",
    "severity": "MODERATE"
  },
  "details": "Cisco Catalyst 6000, 5000, or 4000 switches allow remote attackers to cause a denial of service by connecting to the SSH service with a non-SSH client, which generates a protocol mismatch error.",
  "id": "GHSA-wmwf-3w9p-w4cj",
  "modified": "2022-04-30T18:15:22Z",
  "published": "2022-04-30T18:15:22Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2001-0080"
    },
    {
      "type": "WEB",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/5760"
    },
    {
      "type": "WEB",
      "url": "http://www.cisco.com/warp/public/707/catalyst-ssh-protocolmismatch-pub.shtml"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/2117"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

CVE-2001-0080

Vulnerability from cvelistv5

var-200102-0052

Vulnerability from variot

gsd-2001-0080

Vulnerability from gsd

ghsa-wmwf-3w9p-w4cj

Vulnerability from github

Tags

Sightings

Nomenclature