cbcvebase.
CVE-2004-0175
published 2004-08-18

CVE-2004-0175: Directory traversal vulnerability in scp for OpenSSH before 3.4p1 allows remote malicious servers to overwrite arbitrary files. NOTE: this may be a rediscovery…

PriorityP420medium4.3CVSS 2.0
AVNACMAuNCNIPAN
EPSS
1.82%
76.0th percentile
Directory traversal vulnerability in scp for OpenSSH before 3.4p1 allows remote malicious servers to overwrite arbitrary files. NOTE: this may be a rediscovery of CVE-2000-0992.

Affected

20 ranges
VendorProductVersion rangeFixed in
debianopenssh< openssh 1:3.9p1-1 (bookworm)openssh 1:3.9p1-1 (bookworm)
openbsdopenssh
openbsdopenssh
openbsdopenssh
openbsdopenssh
openbsdopenssh
openbsdopenssh
openbsdopenssh
openbsdopenssh
openbsdopenssh
openbsdopenssh
openbsdopenssh
openbsdopenssh
openbsdopenssh
openbsdopenssh
openbsdopenssh
openbsdopenssh>= 0 < 1:3.9p1-11:3.9p1-1
openbsdopenssh>= 0 < 1:3.9p1-11:3.9p1-1
openbsdopenssh>= 0 < 1:3.9p1-11:3.9p1-1
openbsdopenssh>= 0 < 1:3.9p1-11:3.9p1-1

CVSS provenance

nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:N/I:P/A:N
osv5.0MEDIUM
vendor_debian5.0LOW
vendor_redhat5.0MEDIUM
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.