Vulnerability Database

308,379

Total vulnerabilities in the database

CVE-2001-0259

ssh-keygen in ssh 1.2.27 - 1.2.30 with Secure-RPC can allow local attackers to recover a SUN-DES-1 magic phrase generated by another user, which the attacker can use to decrypt that user's private key file.

Published: Jun 2, 2001
Updated: Nov 9, 2025
CVE: CVE-2001-0259
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 3.6
AV:L/AC:L/Au:N/C:P/I:P/A:N

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
ssh / ssh	1.2.30	1.2.30.x
ssh / ssh	1.2.27	1.2.27.x
ssh / ssh	1.2.28	1.2.28.x
ssh / ssh	1.2.29	1.2.29.x

http://archives.neohapsis.com/archives/bugtraq/2001-01/0262.html
http://www.securityfocus.com/bid/2222
http://www.ssh.com/products/ssh/patches/secureRPCvulnerability.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/5963

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo