CVE-2002-1646
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2002-1646
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
SSH Secure Shell for Servers 3.0.0 to 3.1.1 allows remote attackers to override the AllowedAuthentications configuration and use less secure authentication schemes (e.g. password) than configured for the server.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
SSH Communications SSH AllowedAuthentications配置存在漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Secure Shell是一款由SSH Communications分发和维护的商业SSH实现。 Secure Shell中在处理配置文件中的"AllowedAuthentications"选项存在漏洞,可导致远程攻击者绕过其它强壮的认证机制。 在SSH Secure Shell for Servers中配置文件中选项"AllowedAuthentications" 用来设置验证模式,如果"Password"关键词不包含在此选项中,就不能使用密码进行验证访问。但存在漏洞,可以导致某些基于secure sh
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2002-1646
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2002-1646
请登录查看更多情报信息。
- http://www.ssh.com/products/ssh/advisories/authentication.cfmx_refsource_CONFIRM
- http://www.ssh.com/company/newsroom/article/201/x_refsource_CONFIRM
- http://www.ciac.org/ciac/bulletins/m-081.shtmlthird-party-advisorygovernment-resourcex_refsource_CIAC
- https://nvd.nist.gov/vuln/detail/CVE-2002-1646
Same Patch Batch · n/a · 2005-03-28 · 26 CVEs total
| CVE-2002-1648 | SquirrelMail对恶意HTML格式邮件处理的漏洞 | |
| CVE-2005-0469 | 多个Telnet客户端slc_add_reply() 缓冲区溢出漏洞 | |
| CVE-2005-0468 | Telnet客户端env_opt_add() 缓冲区溢出漏洞 | |
| CVE-2004-1773 | GNU Sharutils多个缓冲区溢出漏洞 | |
| CVE-2004-1772 | GNU Sharutils shar命令行解析缓冲区溢出漏洞 | |
| CVE-2002-1656 | X-News不安全用户数据库权限漏洞 | |
| CVE-2002-1655 | Netscape Enterprise Server Web Publisher拒绝服务攻击漏洞 | |
| CVE-2002-1654 | Netscape企业Web服务器蛮力授权攻击漏洞 | |
| CVE-2002-1653 | Cryptcat加密连接弱点 | |
| CVE-2002-1652 | CGIEmail远程缓冲区溢出漏洞 | |
| CVE-2002-1651 | Verity Search97错误页面跨站脚本漏洞 | |
| CVE-2002-1650 | SquirrelMail拼写检查器漏洞 | |
| CVE-2002-1649 | SquirrelMail对恶意HTML格式邮件处理的漏洞 | |
| CVE-2002-1634 | Netware下的Netscape Enterprise Web服务器信息泄露漏洞 | |
| CVE-2002-1647 | Slash Slashcode密码泄露漏洞 | |
| CVE-2002-1645 | SSH Communications Secure Shell Windows客户端URLCatcher缓冲区溢出漏洞 | |
| CVE-2002-1644 | SSH Communications SSH Server权限提升漏洞 | |
| CVE-2002-1643 | Real Networks Helix Universal Server RTSP transport字段远程缓冲区溢出漏洞 | |
| CVE-2002-1642 | PostgreSQL VACUUM命令数据丢失漏洞 | |
| CVE-2002-1641 | Oracle Web Cache远程缓冲区溢出漏洞 |
Showing top 20 of 26 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-8276
bettercap MySQL Server mysql_server.go integer coercion - CVE-2026-8275
bettercap zerogod IPP Service zerogod_ipp_primitives.go ippR - CVE-2026-8270
Open5GS SMF ogs_nas_parse_qos_rules denial of service - CVE-2026-8269
Open5GS SMF smf_nsmf_handle_create_sm_context denial of serv - CVE-2026-8268
Open5GS SMF OpenAPI_list_create denial of service
V. Comments for CVE-2002-1646
No comments yet