CVE-2002-1360

Name of the Vulnerable Software and Affected Versions: SSH2 servers and clients (affected versions not specified)

Description: The issue arises from improper handling of strings containing null characters in SSH2 servers and clients. This occurs when the string length is specified by a length field, potentially leading to a denial of service or possibly allowing remote attackers to execute arbitrary code. The problem is related to the use of null-terminated strings, commonly implemented in languages like C.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.