VYPR
Get started
← All advisories
Unrated severityNVD Advisory· Published Feb 24, 2000· Updated Apr 16, 2026

CVE-2000-0217

CVE-2000-0217

Description

The default configuration of SSH allows X forwarding, which could allow a remote attacker to control a client's X sessions via a malicious xauth program.

Affected products

46
  • OpenBSD/OpenSSH
    cpe:2.3:a:openbsd:openssh:1.2:*:*:*:*:*:*:*
  • SSH/SSH32 versions
    cpe:2.3:a:ssh:ssh:1.2.0:*:*:*:*:*:*:*+ 31 more
    • cpe:2.3:a:ssh:ssh:1.2.0:*:*:*:*:*:*:*
    • cpe:2.3:a:ssh:ssh:1.2.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ssh:ssh:1.2.10:*:*:*:*:*:*:*
    • cpe:2.3:a:ssh:ssh:1.2.11:*:*:*:*:*:*:*
    • cpe:2.3:a:ssh:ssh:1.2.12:*:*:*:*:*:*:*
    • cpe:2.3:a:ssh:ssh:1.2.13:*:*:*:*:*:*:*
    • cpe:2.3:a:ssh:ssh:1.2.14:*:*:*:*:*:*:*
    • cpe:2.3:a:ssh:ssh:1.2.15:*:*:*:*:*:*:*
    • cpe:2.3:a:ssh:ssh:1.2.16:*:*:*:*:*:*:*
    • cpe:2.3:a:ssh:ssh:1.2.17:*:*:*:*:*:*:*
    • cpe:2.3:a:ssh:ssh:1.2.18:*:*:*:*:*:*:*
    • cpe:2.3:a:ssh:ssh:1.2.19:*:*:*:*:*:*:*
    • cpe:2.3:a:ssh:ssh:1.2.2:*:*:*:*:*:*:*
    • cpe:2.3:a:ssh:ssh:1.2.20:*:*:*:*:*:*:*
    • cpe:2.3:a:ssh:ssh:1.2.21:*:*:*:*:*:*:*
    • cpe:2.3:a:ssh:ssh:1.2.22:*:*:*:*:*:*:*
    • cpe:2.3:a:ssh:ssh:1.2.23:*:*:*:*:*:*:*
    • cpe:2.3:a:ssh:ssh:1.2.24:*:*:*:*:*:*:*
    • cpe:2.3:a:ssh:ssh:1.2.25:*:*:*:*:*:*:*
    • cpe:2.3:a:ssh:ssh:1.2.26:*:*:*:*:*:*:*
    • cpe:2.3:a:ssh:ssh:1.2.27:*:*:*:*:*:*:*
    • cpe:2.3:a:ssh:ssh:1.2.28:*:*:*:*:*:*:*
    • cpe:2.3:a:ssh:ssh:1.2.29:*:*:*:*:*:*:*
    • cpe:2.3:a:ssh:ssh:1.2.3:*:*:*:*:*:*:*
    • cpe:2.3:a:ssh:ssh:1.2.30:*:*:*:*:*:*:*
    • cpe:2.3:a:ssh:ssh:1.2.31:*:*:*:*:*:*:*
    • cpe:2.3:a:ssh:ssh:1.2.4:*:*:*:*:*:*:*
    • cpe:2.3:a:ssh:ssh:1.2.5:*:*:*:*:*:*:*
    • cpe:2.3:a:ssh:ssh:1.2.6:*:*:*:*:*:*:*
    • cpe:2.3:a:ssh:ssh:1.2.7:*:*:*:*:*:*:*
    • cpe:2.3:a:ssh:ssh:1.2.8:*:*:*:*:*:*:*
    • cpe:2.3:a:ssh:ssh:1.2.9:*:*:*:*:*:*:*
  • SSH/Ssh213 versions
    cpe:2.3:a:ssh:ssh2:2.0:*:*:*:*:*:*:*+ 12 more
    • cpe:2.3:a:ssh:ssh2:2.0:*:*:*:*:*:*:*
    • cpe:2.3:a:ssh:ssh2:2.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ssh:ssh2:2.0.10:*:*:*:*:*:*:*
    • cpe:2.3:a:ssh:ssh2:2.0.11:*:*:*:*:*:*:*
    • cpe:2.3:a:ssh:ssh2:2.0.12:*:*:*:*:*:*:*
    • cpe:2.3:a:ssh:ssh2:2.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:ssh:ssh2:2.0.3:*:*:*:*:*:*:*
    • cpe:2.3:a:ssh:ssh2:2.0.4:*:*:*:*:*:*:*
    • cpe:2.3:a:ssh:ssh2:2.0.5:*:*:*:*:*:*:*
    • cpe:2.3:a:ssh:ssh2:2.0.6:*:*:*:*:*:*:*
    • cpe:2.3:a:ssh:ssh2:2.0.7:*:*:*:*:*:*:*
    • cpe:2.3:a:ssh:ssh2:2.0.8:*:*:*:*:*:*:*
    • cpe:2.3:a:ssh:ssh2:2.0.9:*:*:*:*:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

1

News mentions

0

No linked articles in our index yet.