CVE-2001-1469

Name of the Vulnerable Software and Affected Versions SSH1

Description The issue allows remote attackers to modify messages without detection by XORing the original message's cyclic redundancy check (CRC) with the CRC of a mask consisting of all the bits of the original message that were modified. This is related to the use of the RC4 stream cipher in SSH1.

Recommendations For SSH1, consider disabling the use of the RC4 stream cipher as a temporary workaround until a more secure alternative is implemented. Restrict access to sensitive data transmitted over SSH1 to minimize the risk of exploitation.