CVE-2003-1120
NONE EPSS 24.3%
Published Dec 31, 200322y ago · Modified Jun 16, 20262w ago
Published Dec 31, 2003 22y ago
Last Modified Jun 16, 2026 2w ago
Description
Race condition in SSH Tectia Server 4.0.3 and 4.0.4 for Unix, when the password change plugin (ssh-passwd-plugin) is enabled, allows local users to obtain the server's private key.
Threat Intelligence
EPSS Exploit Probability
24.3% percentile
Exploit & Patch Status
No Known Exploit
Patch Available
Affected Products 2
References 7
- secunia.com http://secunia.com/advisories/11193
- securitytracker.com http://securitytracker.com/alerts/2004/Mar/1009532.html
- kb.cert.org http://www.kb.cert.org/vuls/id/814198
- osvdb.org http://www.osvdb.org/displayvuln.php?osvdb_id=4491
- securityfocus.com http://www.securityfocus.com/bid/9956
- ssh.com http://www.ssh.com/company/newsroom/article/520/
- exchange.xforce.ibmcloud.com https://exchange.xforce.ibmcloud.com/vulnerabilities/15585
Remediation
- kb.cert.org http://www.kb.cert.org/vuls/id/814198
- securityfocus.com http://www.securityfocus.com/bid/9956
- ssh.com http://www.ssh.com/company/newsroom/article/520/