PT-2005-3677 · Openssh+1 · Openssh+1

Published

2005-09-06

Updated

2024-07-08

CVE-2005-2797

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions OpenSSH versions 4.0 through 4.2

Description The issue is related to the improper handling of dynamic port forwarding when a listen address is not provided, potentially causing OpenSSH to enable the GatewayPorts functionality.

Recommendations For OpenSSH versions 4.0 through 4.2, update to version 4.2 or later to resolve the issue.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

ALT-PU-2024-3921

ALT-PU-2024-4077

ALT-PU-2024-4467

ALT-PU-2024-9513

CVE-2005-2797

Affected Products

Alt Linux

Openssh

PT-2005-3677 · Openssh+1 · Openssh+1

CVE-2005-2797

Related Identifiers

Affected Products

References · 365