CVE-2002-1357 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Cisco IOS

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-130 — Improper Handling of Length Parameter Inconsistency6 documents6 sources

Severity

10.0CRITICALNVD

EPSS

21.4%

top 4.30%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco IOS Fissh SSH Client Intersoft Securenetterm +5 more

Timeline

PublishedDec 23

Latest updateApr 30

Description

Multiple SSH2 servers and clients do not properly handle packets or data elements with incorrect length specifiers, which may allow remote attackers to cause a denial of service or possibly execute arbitrary code, as demonstrated by the SSHredder SSH protocol test suite.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages8 packages

▶NVDcisco/ios8 versions+7

▶NVDputty/putty0.48, 0.49, 0.53+2

▶NVDwinscp/winscp2.0.0

▶debiandebian/openssh

▶NVDfissh/ssh_client1.0a_for_windows

🔴Vulnerability Details

GHSA

GHSA-2fjq-9whp-5fvh: Multiple SSH2 servers and clients do not properly handle packets or data elements with incorrect length specifiers, which may allow remote attackers t↗2022-04-30

▶

CVEList

CVE-2002-1357: Multiple SSH2 servers and clients do not properly handle packets or data elements with incorrect length specifiers, which may allow remote attackers t↗2002-12-17

▶

📋Vendor Advisories

Cisco

SSH Malformed Packet Vulnerabilities↗2002-12-19

▶

Debian

CVE-2002-1357: openssh - Multiple SSH2 servers and clients do not properly handle packets or data element...↗2002

▶

📐Framework References

CWE

Improper Handling of Length Parameter Inconsistency↗

▶