Search for vulnerabilities
Vulnerability details: VCID-mcg7-qxzv-aaaq
Vulnerability ID VCID-mcg7-qxzv-aaaq
Aliases CVE-2005-2797
Summary OpenSSH 4.0, and other versions before 4.2, does not properly handle dynamic port forwarding ("-D" option) when a listen address is not provided, which may cause OpenSSH to enable the GatewayPorts functionality.
Status Published
Exploitability 0.5
Weighted Severity 4.5
Risk 2.2
Affected and Fixed Packages Package Details
Weaknesses (0)
There are no known CWE.
System Score Found at
epss 0.00515 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00515 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00515 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00515 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00515 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00515 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00515 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00515 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00515 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00515 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00515 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00515 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00515 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00704 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00704 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00704 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00704 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00704 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00704 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00704 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00704 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00704 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00704 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00704 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00704 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00704 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00704 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00704 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00704 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00704 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00704 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00704 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00704 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00704 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00704 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00704 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00704 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00704 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00704 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00704 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00704 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00704 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00704 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00704 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00704 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00704 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00704 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00704 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00704 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00704 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00704 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00704 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00713 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00713 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00713 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00713 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00713 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00713 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00713 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00713 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00713 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00713 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00713 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00713 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00713 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00713 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00713 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00713 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00713 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00713 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00713 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00713 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00713 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00713 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00713 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00713 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00713 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00713 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00713 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00713 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00713 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00713 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00713 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.00713 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
epss 0.01037 https://api.first.org/data/v1/epss?cve=CVE-2005-2797
cvssv2 5.0 https://nvd.nist.gov/vuln/detail/CVE-2005-2797
Reference id Reference type URL
ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2006.11/SCOSA-2006.11.txt
ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.53/SCOSA-2005.53.txt
http://marc.info/?l=bugtraq&m=112605977304049&w=2
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-2797.json
https://api.first.org/data/v1/epss?cve=CVE-2005-2797
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2797
http://secunia.com/advisories/16686
http://secunia.com/advisories/18010
http://secunia.com/advisories/18661
http://secunia.com/advisories/19243
http://securitytracker.com/id?1014845
http://support.avaya.com/elmodocs2/security/ASA-2006-033.htm
http://www.mindrot.org/pipermail/openssh-unix-announce/2005-September/000083.html
http://www.osvdb.org/19142
http://www.securityfocus.com/bid/14727
326065 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=326065
cpe:2.3:a:openbsd:openssh:4.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openbsd:openssh:4.0:*:*:*:*:*:*:*
CVE-2005-2797 https://nvd.nist.gov/vuln/detail/CVE-2005-2797
No exploits are available.
Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N Found at https://nvd.nist.gov/vuln/detail/CVE-2005-2797
Exploitability (E) Access Vector (AV) Access Complexity (AC) Authentication (Au) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

none

partial

complete

none

partial

complete

none

partial

complete
Exploit Prediction Scoring System (EPSS)
Percentile 0.77164
EPSS Score 0.00515
Published At Nov. 1, 2024, midnight
Date Actor Action Source VulnerableCode Version
There are no relevant records.