CVE-2003-0682
ssh-krb5 - possible remote vulnerability
EPSS 0.33%
Description
"Memory bugs" in OpenSSH 3.7.1 and earlier, with unknown impact, a different set of vulnerabilities than CVE-2003-0693 and CVE-2003-0695.
How to fix CVE-2003-0682
To remediate CVE-2003-0682, upgrade the affected package to a fixed version below.
- Debian/openssh—upgrade to 1:3.6.1p2-9 or later
- Debian/openssh—upgrade to 1:3.4p1-1.woody.3 or later
- Debian/openssh—upgrade to 1:3.4p1-1.woody.3 or later
- Debian/openssh-krb5—upgrade to 3.4p1-0woody4 or later
Is CVE-2003-0682 being exploited?
Low — EPSS is 0.3%, meaning exploitation activity has not been observed at scale.
Affected packages (4)
- from 0, < 1:3.6.1p2-9
- from 0, < 1:3.4p1-1.woody.3
- from 0, < 1:3.4p1-1.woody.3
- from 0, < 3.4p1-0woody4