CVE-2002-0083

CRITICAL

OpenSSH <3.0.2 - Privilege Escalation

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2002-0083. PoCs published by Morgan.

AI-analyzed exploit summary The provided text is a vulnerability description for CVE-2002-0083, an off-by-one error in OpenSSH's channel code. It does not contain exploit code but references a potential exploit in a separate binary file.

Description

Off-by-one error in the channel code of OpenSSH 2.0 through 3.0.2 allows local users or remote malicious servers to gain privileges.

Exploits (1)

exploitdb WRITEUP VERIFIED
by Morgan · textremoteunix
https://www.exploit-db.com/exploits/21314

The provided text is a vulnerability description for CVE-2002-0083, an off-by-one error in OpenSSH's channel code. It does not contain exploit code but references a potential exploit in a separate binary file.

Classification
Writeup 90%
Attack Type
Other
Complexity
Moderate
Reliability
Theoretical
Target: OpenSSH (versions affected by CVE-2002-0083)
Auth required
Prerequisites: Access to a vulnerable OpenSSH server · Valid credentials (likely required)
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (23)

Core 23
Core References
Broken Link mailing-list x_refsource_bugtraq
http://archives.neohapsis.com/archives/bugtraq/2002-03/0108.html
Broken Link vdb-entry x_refsource_osvdb
http://www.osvdb.org/730
Broken Link, Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/4241
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=101561384821761&w=2
Broken Link, Third Party Advisory, VDB Entry vendor-advisory x_refsource_hp
http://online.securityfocus.com/advisories/3960
Broken Link, Vendor Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2002/dsa-119
Mailing List, Patch mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=101586991827622&w=2
Broken Link, Patch, Vendor Advisory vendor-advisory x_refsource_engarde
http://www.linuxsecurity.com/advisories/other_advisory-1937.html
Broken Link vendor-advisory x_refsource_conectiva
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000467
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=101553908201861&w=2
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=101552065005254&w=2
Broken Link vendor-advisory x_refsource_mandrake
http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-019.php
Broken Link vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2002-043.html
Broken Link vdb-entry x_refsource_xf
http://www.iss.net/security_center/static/8383.php
Vendor Advisory x_refsource_confirm
http://www.openbsd.org/advisories/ssh_channelalloc.txt
Broken Link, Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://online.securityfocus.com/archive/1/264657
Broken Link mailing-list x_refsource_vulnwatch
http://archives.neohapsis.com/archives/vulnwatch/2002-q1/0060.html

Scores

CVSS v3 9.8
EPSS 0.0177
EPSS Percentile 83.1%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-193
Status published
Products (27)
conectiva/linux 5.0
conectiva/linux 5.1
conectiva/linux 6.0
conectiva/linux 7.0
conectiva/linux ecommerce
conectiva/linux graficas
engardelinux/secure_linux 1.0.1
immunix/immunix 7.0
mandrakesoft/mandrake_linux 7.1
mandrakesoft/mandrake_linux 7.2
... and 17 more
Published Mar 15, 2002
Tracked Since Feb 18, 2026