Unrated severityNVD Advisory· Published Dec 31, 2003· Updated Jun 16, 2026
CVE-2003-1120
CVE-2003-1120
Description
Race condition in SSH Tectia Server 4.0.3 and 4.0.4 for Unix, when the password change plugin (ssh-passwd-plugin) is enabled, allows local users to obtain the server's private key.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3cpe:2.3:a:ssh:tectia_server:4.0.3:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:ssh:tectia_server:4.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:ssh:tectia_server:4.0.4:*:*:*:*:*:*:*
- (no CPE)range: = 4.0.3, 4.0.4
Patches
Vulnerability mechanics
References
7- www.kb.cert.org/vuls/id/814198nvdPatchThird Party AdvisoryUS Government Resource
- www.securityfocus.com/bid/9956nvdPatch
- www.ssh.com/company/newsroom/article/520/nvdPatch
- secunia.com/advisories/11193nvd
- securitytracker.com/alerts/2004/Mar/1009532.htmlnvd
- www.osvdb.org/displayvuln.phpnvd
- exchange.xforce.ibmcloud.com/vulnerabilities/15585nvd
News mentions
0No linked articles in our index yet.