CVE-2001-0471

SSH daemon <1.2.30 - Info Disclosure

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2001-0471. PoCs published by Jose Nazario.

AI-analyzed exploit summary This exploit leverages a logging flaw in SSH1 to perform a brute-force attack on root passwords without detection after the fourth attempt. It uses an Expect script to automate password guessing from a dictionary file.

Description

SSH daemon version 1 (aka SSHD-1 or SSH-1) 1.2.30 and earlier does not log repeated login attempts, which could allow remote attackers to compromise accounts without detection via a brute force attack.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Jose Nazario · textremoteunix
https://www.exploit-db.com/exploits/20615

This exploit leverages a logging flaw in SSH1 to perform a brute-force attack on root passwords without detection after the fourth attempt. It uses an Expect script to automate password guessing from a dictionary file.

Classification
Working Poc 95%
Attack Type
Auth Bypass
Complexity
Trivial
Reliability
Reliable
Target: SSH1 (SSH Communications)
No auth needed
Prerequisites: SSH1 daemon with default configuration allowing root logins · Dictionary file of potential passwords
MITRE ATT&CK
mistral-large-3 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2
Core References
Exploit, Patch, Vendor Advisory vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/2345
Exploit, Patch, Vendor Advisory mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/160648

Scores

EPSS 0.0557
EPSS Percentile 91.9%

Details

Status published
Products (1)
ssh/ssh < 1.2.30
Published Jun 27, 2001
Tracked Since Feb 18, 2026