GCVE - cpe:2.3:a:ssh:ssh2:2.0.4:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:ssh:ssh2:2.0.4:*:*:*:*:*:*:*

part: a version: 2.0.4 update: *

Vendor	Ssh (`244e7ab1-7432-5147-94cd-c233f4ecfdee`)
Product	Ssh2 (`c5cf441a-3dfc-5318-a233-8dc38e97b2dc`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2002-1715`	vulnerable	2026-06-08 04:47:17.946237	Details available SSH 1 through 3, and possibly other versions, allows local users to bypass restricted shells such as rbash or rksh by uploading a script to a world-writeable directory, then executing that script to gain normal shell access. Published: 2005-06-21T04:00:00.000Z Updated: 2024-08-08T03:34:55.897Z Open on db.gcve.eu Reference links https://exchange.xforce.ibmcloud.com/vulnerabilities/8908 http://www.securityfocus.com/bid/4547 http://online.securityfocus.com/archive/1/268446	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2000-0217`	vulnerable	2026-06-08 04:44:58.422798	Details available The default configuration of SSH allows X forwarding, which could allow a remote attacker to control a client's X sessions via a malicious xauth program. Published: 2000-04-10T04:00:00.000Z Updated: 2024-08-08T05:05:54.163Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/1006	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-1999-1231`	vulnerable	2026-06-08 04:44:58.242354	Details available ssh 2.0.12, and possibly other versions, allows valid user names to attempt to enter the correct password multiple times, but only prompts an invalid user name for a password once, which allows remote attackers to determine user account names on the server. Published: 2001-09-12T04:00:00.000Z Updated: 2024-08-01T17:02:53.790Z Open on db.gcve.eu Reference links http://www.securityfocus.com/archive/1/14758 https://exchange.xforce.ibmcloud.com/vulnerabilities/2276	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-1999-1029`	vulnerable	2026-06-08 04:44:58.190323	Details available SSH server (sshd2) before 2.0.12 does not properly record login attempts if the connection is closed before the maximum number of tries, allowing a remote attacker to guess the password without showing up in the audit logs. Published: 2001-09-12T04:00:00.000Z Updated: 2024-08-01T16:55:29.464Z Open on db.gcve.eu Reference links https://exchange.xforce.ibmcloud.com/vulnerabilities/2193 http://marc.info/?l=bugtraq&m=92663402004280&w=2 http://www.securityfocus.com/bid/277	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.