CVE-2004-0175
EPSS 0.39%
Description
Directory traversal vulnerability in scp for OpenSSH before 3.4p1 allows remote malicious servers to overwrite arbitrary files. NOTE: this may be a rediscovery of CVE-2000-0992.
How to fix CVE-2004-0175
To remediate CVE-2004-0175, upgrade the affected package to a fixed version below.
- Debian/openssh—upgrade to 1:3.9p1-1 or later
Is CVE-2004-0175 being exploited?
Low — EPSS is 0.4%, meaning exploitation activity has not been observed at scale.
Affected packages (1)
- from 0, < 1:3.9p1-1