cbcvebase.
CVE-2003-0695
published 2003-10-06

CVE-2003-0695: Multiple "buffer management errors" in OpenSSH before 3.7.1 may allow attackers to cause a denial of service or execute arbitrary code using (1) buffer_init in…

PriorityP428high7.5CVSS 2.0
AVNACLAuNCPIPAP
EPSS
3.61%
88.0th percentile
Multiple "buffer management errors" in OpenSSH before 3.7.1 may allow attackers to cause a denial of service or execute arbitrary code using (1) buffer_init in buffer.c, (2) buffer_free in buffer.c, or (3) a separate function in channels.c, a different vulnerability than CVE-2003-0693.

Affected

17 ranges
VendorProductVersion rangeFixed in
debianopenssh< openssh 1:3.6.1p2-6.0 (bookworm)openssh 1:3.6.1p2-6.0 (bookworm)
debianopenssh< openssh 1:3.6.1p2-9 (bookworm)openssh 1:3.6.1p2-9 (bookworm)
debianopenssh< openssh 1:3.7.1 (bookworm)openssh 1:3.7.1 (bookworm)
openbsdopenssh<= 3.7
openbsdopenssh<= 3.7.1
openbsdopenssh>= 0 < 1:3.7.11:3.7.1
openbsdopenssh>= 0 < 1:3.6.1p2-6.01:3.6.1p2-6.0
openbsdopenssh>= 0 < 1:3.6.1p2-91:3.6.1p2-9
openbsdopenssh>= 0 < 1:3.7.11:3.7.1
openbsdopenssh>= 0 < 1:3.6.1p2-6.01:3.6.1p2-6.0
openbsdopenssh>= 0 < 1:3.6.1p2-91:3.6.1p2-9
openbsdopenssh>= 0 < 1:3.7.11:3.7.1
openbsdopenssh>= 0 < 1:3.6.1p2-6.01:3.6.1p2-6.0
openbsdopenssh>= 0 < 1:3.6.1p2-91:3.6.1p2-9
openbsdopenssh>= 0 < 1:3.7.11:3.7.1
openbsdopenssh>= 0 < 1:3.6.1p2-6.01:3.6.1p2-6.0
openbsdopenssh>= 0 < 1:3.6.1p2-91:3.6.1p2-9

CVSS provenance

nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
osv10.0CRITICAL
vendor_debian10.0CRITICAL
vendor_redhat10.0CRITICAL
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.