Description
SSH daemon version 1 (aka SSHD-1 or SSH-1) 1.2.30 and earlier does not log repeated login attempts, which could allow remote attackers to compromise accounts without detection via a brute force attack.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Jose Nazario · textremoteunix
https://www.exploit-db.com/exploits/20615
References (2)
Core 2
Core References
Exploit, Patch, Vendor Advisory vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/2345
Exploit, Patch, Vendor Advisory mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/160648
Scores
EPSS
0.0294
EPSS Percentile
86.6%
Details
Status
published
Products (1)
ssh/ssh
< 1.2.30
Published
Jun 27, 2001
Tracked Since
Feb 18, 2026