CVE-1999-1085
published 1998-06-12CVE-1999-1085: SSH 1.2.25, 1.2.23, and other versions, when used in in CBC (Cipher Block Chaining) or CFB (Cipher Feedback 64 bits) modes, allows remote attackers to insert…
PriorityP422medium5CVSS 2.0
AVNACLAuNCNIPAN
EPSS
3.21%
86.6th percentile
SSH 1.2.25, 1.2.23, and other versions, when used in in CBC (Cipher Block Chaining) or CFB (Cipher Feedback 64 bits) modes, allows remote attackers to insert arbitrary data into an existing stream between an SSH client and server by using a known plaintext attack and computing a valid CRC-32 checksum for the packet, aka the "SSH insertion attack."
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ssh | secure_shell | — | — |
| ssh | secure_shell | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
CISA ICS
GE UR family
cisa_ics·2021-03-16
GE UR family
## Archived Content In an effort to keep CISA.gov current, the archive contains outdated information that may not reflect current policy or programs.
ICS Advisory
##
GE UR family
Last RevisedMarch 16, 2021
Alert CodeICSA-21-075-02
## 1. EXECUTIVE SUMMARY
- CVSS v3 9.8
- ATTENTION: Exploitable remotely/low skill level to exploit
- Vendor: GE
- Equipment: UR Family
- Vulnerabilities: Inadequate Encryption Strength, Session Fixation, Exposure of Sensitive Information to an Unauthorized Actor, Improper Input Validation, Unrestricted Upload of File with Dangerous Type, Insecure Default Variable Initialization, Use of Hard-coded Credentials
## 2. RISK EVALUATION
Successful exploitation of these vulnerabilities could allow an attacker to acce
GHSA
GHSA-qfm6-qcw8-g9xg: SSH 1
ghsa_unreviewed·2022-04-30
CVE-1999-1085 [MEDIUM] GHSA-qfm6-qcw8-g9xg: SSH 1
SSH 1.2.25, 1.2.23, and other versions, when used in in CBC (Cipher Block Chaining) or CFB (Cipher Feedback 64 bits) modes, allows remote attackers to insert arbitrary data into an existing stream between an SSH client and server by using a known plaintext attack and computing a valid CRC-32 checksum for the packet, aka the "SSH insertion attack."
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://marc.info/?l=bugtraq&m=90221103125884&w=2http://marc.info/?l=bugtraq&m=90221104525878&w=2http://www.iss.net/security_center/static/1126.phphttp://www.kb.cert.org/vuls/id/13877http://marc.info/?l=bugtraq&m=90221103125884&w=2http://marc.info/?l=bugtraq&m=90221104525878&w=2http://www.iss.net/security_center/static/1126.phphttp://www.kb.cert.org/vuls/id/13877
1998-06-12
Published