Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2003-0786

The SSH1 PAM challenge response authentication in OpenSSH 3.7.1 and 3.7.1p1, when Privilege Separation is disabled, does not check the result of the authentication attempt, which can allow remote attackers to gain privileges.

  • Published: Nov 17, 2003
  • Updated: Apr 13, 2023
  • CVE: CVE-2003-0786
  • Severity: High
  • Exploit:

CVSS v2:

  • Severity: High
  • Score: 10
  • AV:N/AC:L/Au:N/C:C/I:C/A:C

No CWE or OWASP classifications available.

Software From Fixed in
openbsd / openssh 3.7.1p1 3.7.1p1.x
openbsd / openssh 3.7.1 3.7.1.x