CVE-2003-0386

HIGH

cve@mitre.org

Details

CVSS v2: 7.5
NVD published: 2003-07-02 04:00:00
Affected versions: cpe:2.3:a:openbsd:openssh:3.6.1:*:*:*:*:*:*:*
Summary: OpenSSH 3.6.1 and earlier, when restricting host access by numeric IP addresses and with VerifyReverseMapping disabled, allows remote attackers to bypass "from=" and "user@host" address restrictions by connecting to a host from a system whose reverse DNS hostname contains the numeric IP address.
Remediation: Not available in our cache.
Exploit info: http://www.kb.cert.org/vuls/id/978316 http://www.securityfocus.com/archive/1/324016/2003-06-03/2003-06-09/0

TopVuln sends digest emails with high-risk CVE picks across multiple authoritative sources—curated with EPSS and AI. Choose daily per-stream emails and optional weekly or monthly roundups.

Subscribe — free email digest or paid plan

Information is aggregated from multiple authoritative sources for convenience; verify with NVD and vendors before operational decisions.