CVE-2001-1473

NUCLEI

SSH - Man-in-the-Middle Attack via SSH-1 Protocol Session ID Spoofing

Title source: llm

Exploitation Summary

CVE-2001-1473 has a Nuclei detection template available — see the Nuclei card below for the Shodan/FOFA recon queries.

Description

The SSH-1 protocol allows remote servers to conduct man-in-the-middle attacks and replay a client challenge response to a target server by creating a Session ID that matches the Session ID of the target, but which uses a public key pair that is weaker than the target's public key, which allows the attacker to compute the corresponding private key and use the target's Session ID with the compromised key pair to masquerade as the target.

Nuclei Templates (1)

Deprecated SSHv1 Protocol Detection

HIGHby iamthefrogy

References (2)

Core 2

Core References

US Government Resource third-party-advisory x_refsource_cert-vn

http://www.kb.cert.org/vuls/id/684820

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/6603

Scores

EPSS 0.0488

EPSS Percentile 89.8%

Details

CWE

CWE-310

Status published

Products (8)

ssh/ssh 1.2.24

ssh/ssh 1.2.25

ssh/ssh 1.2.26

ssh/ssh 1.2.27

ssh/ssh 1.2.28

ssh/ssh 1.2.29

ssh/ssh 1.2.30

ssh/ssh 1.2.31

Published Jan 18, 2001

Tracked Since Feb 18, 2026