CVE-2002-1645

Published: Nov 25, 2002Modified: Apr 16, 2026

10.0

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability: 10.0 / Impact: 10.0

Source: NVD

Description

Buffer overflow in the URL catcher feature for SSH Secure Shell for Workstations client 3.1 to 3.2.0 allows remote attackers to execute arbitrary code via a long URL.

Affected (6)

Products: Ssh: Ssh2

Ssh

1 product

Ssh2

Configuration A

6 vulnerable

Vulnerable Software	Affected Versions
Ssh Ssh2	Version 3.1.1
Ssh Ssh2	Version 3.1.2
Ssh Ssh2	Version 3.1.3
Ssh Ssh2	Version 3.1.4
Ssh Ssh2	Version 3.1
Ssh Ssh2	Version 3.2

References (8)

http://www.kb.cert.org/vuls/id/140977

Source: cve@mitre.org

ExploitPatchUS Government Resource

http://www.securityfocus.com/bid/6263

Source: cve@mitre.org

Patch

http://www.ssh.com/company/newsroom/article/287/

Source: cve@mitre.org

ExploitPatch

https://exchange.xforce.ibmcloud.com/vulnerabilities/10723

Source: cve@mitre.org

http://www.kb.cert.org/vuls/id/140977

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitPatchUS Government Resource

http://www.securityfocus.com/bid/6263

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

http://www.ssh.com/company/newsroom/article/287/

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitPatch

https://exchange.xforce.ibmcloud.com/vulnerabilities/10723

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.