Unrated severityNVD Advisory· Published Sep 6, 2005· Updated Apr 16, 2026

CVE-2005-2797

Description

OpenSSH 4.0, and other versions before 4.2, does not properly handle dynamic port forwarding ("-D" option) when a listen address is not provided, which may cause OpenSSH to enable the GatewayPorts functionality.

Affected products

OpenBSD/OpenSSH
cpe:2.3:a:openbsd:openssh:4.0:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/16686nvdPatch
www.mindrot.org/pipermail/openssh-unix-announce/2005-September/000083.htmlnvdPatchVendor Advisory
ftp.sco.com/pub/updates/OpenServer/SCOSA-2006.11/SCOSA-2006.11.txtnvd
ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.53/SCOSA-2005.53.txtnvd
marc.infonvd
secunia.com/advisories/18010nvd
secunia.com/advisories/18661nvd
secunia.com/advisories/19243nvd
securitytracker.com/idnvd
support.avaya.com/elmodocs2/security/ASA-2006-033.htmnvd
www.osvdb.org/19142nvd
www.securityfocus.com/bid/14727nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000