CVE-2001-1469 — MEDIUM (5.0)

Vulnerability Description

The RC4 stream cipher as used by SSH1 allows remote attackers to modify messages without detection by XORing the original message's cyclic redundancy check (CRC) with the CRC of a mask consisting of all the bits of the original message that were modified.

CVSS Score

5.0

MEDIUM

AV:N/AC:L/Au:N/C:N/I:P/A:N

Confidentiality

NONE

Integrity

PARTIAL

Availability

NONE

Affected Products

Vendor	Product	Versions
Ssh	Ssh	1.2.24

References

http://www.kb.cert.org/vuls/id/25309ExploitUS Government Resource
https://exchange.xforce.ibmcloud.com/vulnerabilities/6449
http://www.kb.cert.org/vuls/id/25309ExploitUS Government Resource
https://exchange.xforce.ibmcloud.com/vulnerabilities/6449

FAQ

What is CVE-2001-1469?

CVE-2001-1469 is a vulnerability with a CVSS score of 5.0 (MEDIUM). The RC4 stream cipher as used by SSH1 allows remote attackers to modify messages without detection by XORing the original message's cyclic redundancy check (CRC) with the CRC of a mask consisting of a...

How severe is CVE-2001-1469?

CVE-2001-1469 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2001-1469?

Check the references section above for vendor advisories and patch information. Affected products include: Ssh Ssh.