CVE-2001-0572

Name of the Vulnerable Software and Affected Versions: OpenSSH (affected versions not specified)

Description: The SSH protocols 1 and 2 as implemented in OpenSSH have various weaknesses that can allow a remote attacker to obtain sensitive information via sniffing. This includes password lengths or ranges of lengths, which can simplify brute force password guessing, whether RSA or DSA authentication is being used, the number of authorized keys in RSA authentication, or the lengths of shell commands.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.