CVE-2000-0999 — HIGH (10.0)

Vulnerability Description

Format string vulnerabilities in OpenBSD ssh program (and possibly other BSD-based operating systems) allow attackers to gain root privileges.

CVSS Score

10.0

HIGH

AV:N/AC:L/Au:N/C:C/I:C/A:C

Confidentiality

COMPLETE

Integrity

COMPLETE

Availability

COMPLETE

Affected Products

Vendor	Product	Versions
Openbsd	Openssh	4.5

References

ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.7/common/028_format_strings.patchPatchVendor Advisory
ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.7/common/028_format_strings.patchPatchVendor Advisory

FAQ

What is CVE-2000-0999?

CVE-2000-0999 is a vulnerability with a CVSS score of 10.0 (HIGH). Format string vulnerabilities in OpenBSD ssh program (and possibly other BSD-based operating systems) allow attackers to gain root privileges.

How severe is CVE-2000-0999?

CVE-2000-0999 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2000-0999?

Check the references section above for vendor advisories and patch information. Affected products include: Openbsd Openssh.