CVE-2005-2797
published 2005-09-06CVE-2005-2797: OpenSSH 4.0, and other versions before 4.2, does not properly handle dynamic port forwarding ("-D" option) when a listen address is not provided, which may…
PriorityP417medium5CVSS 2.0
AVNACLAuNCNIPAN
EPSS
2.20%
80.3th percentile
OpenSSH 4.0, and other versions before 4.2, does not properly handle dynamic port forwarding ("-D" option) when a listen address is not provided, which may cause OpenSSH to enable the GatewayPorts functionality.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | openssh | < openssh 1:4.2p1-1 (bookworm) | openssh 1:4.2p1-1 (bookworm) |
| openbsd | openssh | — | — |
| openbsd | openssh | >= 0 < 1:4.2p1-1 | 1:4.2p1-1 |
| openbsd | openssh | >= 0 < 1:4.2p1-1 | 1:4.2p1-1 |
| openbsd | openssh | >= 0 < 1:4.2p1-1 | 1:4.2p1-1 |
| openbsd | openssh | >= 0 < 1:4.2p1-1 | 1:4.2p1-1 |
CVSS provenance
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:N/I:P/A:N
osv5.0MEDIUM
vendor_debian5.0LOW
vendor_redhat5.0MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Debian
CVE-2005-2797: openssh - OpenSSH 4.0, and other versions before 4.2, does not properly handle dynamic por...
vendor_debian·2005·CVSS 5.0
CVE-2005-2797 [MEDIUM] CVE-2005-2797: openssh - OpenSSH 4.0, and other versions before 4.2, does not properly handle dynamic por...
OpenSSH 4.0, and other versions before 4.2, does not properly handle dynamic port forwarding ("-D" option) when a listen address is not provided, which may cause OpenSSH to enable the GatewayPorts functionality.
Scope: local
bookworm: resolved (fixed in 1:4.2p1-1)
bullseye: resolved (fixed in 1:4.2p1-1)
forky: resolved (fixed in 1:4.2p1-1)
sid: resolved (fixed in 1:4.2p1-1)
trixie: resolved (fixed in 1:4.2p1-1)
Red Hat
CVE-2005-2797: OpenSSH 4
vendor_redhat·CVSS 5.0
CVE-2005-2797 [MEDIUM] CVE-2005-2797: OpenSSH 4
OpenSSH 4.0, and other versions before 4.2, does not properly handle dynamic port forwarding ("-D" option) when a listen address is not provided, which may cause OpenSSH to enable the GatewayPorts functionality.
Statement: Not vulnerable. This issue did not affect the versions of OpenSSH as shipped with Red Hat Enterprise Linux 2.1, 3 or 4.
GHSA
GHSA-c9fh-84vx-4p2p: OpenSSH 4
ghsa_unreviewed·2022-05-03
CVE-2005-2797 [MEDIUM] GHSA-c9fh-84vx-4p2p: OpenSSH 4
OpenSSH 4.0, and other versions before 4.2, does not properly handle dynamic port forwarding ("-D" option) when a listen address is not provided, which may cause OpenSSH to enable the GatewayPorts functionality.
OSV
CVE-2005-2797: OpenSSH 4
osv·2005-09-06·CVSS 5.0
CVE-2005-2797 [MEDIUM] CVE-2005-2797: OpenSSH 4
OpenSSH 4.0, and other versions before 4.2, does not properly handle dynamic port forwarding ("-D" option) when a listen address is not provided, which may cause OpenSSH to enable the GatewayPorts functionality.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2006.11/SCOSA-2006.11.txtftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.53/SCOSA-2005.53.txthttp://marc.info/?l=bugtraq&m=112605977304049&w=2http://secunia.com/advisories/16686http://secunia.com/advisories/18010http://secunia.com/advisories/18661http://secunia.com/advisories/19243http://securitytracker.com/id?1014845http://support.avaya.com/elmodocs2/security/ASA-2006-033.htmhttp://www.mindrot.org/pipermail/openssh-unix-announce/2005-September/000083.htmlhttp://www.osvdb.org/19142http://www.securityfocus.com/bid/14727ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2006.11/SCOSA-2006.11.txtftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.53/SCOSA-2005.53.txthttp://marc.info/?l=bugtraq&m=112605977304049&w=2http://secunia.com/advisories/16686http://secunia.com/advisories/18010http://secunia.com/advisories/18661http://secunia.com/advisories/19243http://securitytracker.com/id?1014845http://support.avaya.com/elmodocs2/security/ASA-2006-033.htmhttp://www.mindrot.org/pipermail/openssh-unix-announce/2005-September/000083.htmlhttp://www.osvdb.org/19142http://www.securityfocus.com/bid/14727
2005-09-06
Published