Unrated severityNVD Advisory· Published Jan 18, 2001· Updated Apr 16, 2026
CVE-2001-1475
CVE-2001-1475
Description
SSH before 2.0, when using RC4 and password authentication, allows remote attackers to replay messages until a new server key (VK) is generated.
Affected products
8cpe:2.3:a:ssh:ssh:1.2.24:*:*:*:*:*:*:*+ 7 more
- cpe:2.3:a:ssh:ssh:1.2.24:*:*:*:*:*:*:*
- cpe:2.3:a:ssh:ssh:1.2.25:*:*:*:*:*:*:*
- cpe:2.3:a:ssh:ssh:1.2.26:*:*:*:*:*:*:*
- cpe:2.3:a:ssh:ssh:1.2.27:*:*:*:*:*:*:*
- cpe:2.3:a:ssh:ssh:1.2.28:*:*:*:*:*:*:*
- cpe:2.3:a:ssh:ssh:1.2.29:*:*:*:*:*:*:*
- cpe:2.3:a:ssh:ssh:1.2.30:*:*:*:*:*:*:*
- cpe:2.3:a:ssh:ssh:1.2.31:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2- www.kb.cert.org/vuls/id/665372nvdPatchUS Government Resource
- exchange.xforce.ibmcloud.com/vulnerabilities/6490nvd
News mentions
0No linked articles in our index yet.