← CVECheck
HomeVulnerabilities

CVE-2001-1474 — MEDIUM severity vulnerability (SSH before 2.0 disables host key checking when connecting to)

SSH before 2.0 disables host key checking when connecting to the localhost, which allows remote attackers to silently redirect connections to the localhost by poisoning the client's DNS cache.

CVE IDCVE-2001-1474
SeverityMEDIUM
CVSS score5.0
CVSS vectorAV:N/AC:L/Au:N/C:N/I:P/A:N
CWENVD-CWE-Other
StatusModified
Published2001-01-18
Last modified2026-04-16
DescriptionSSH before 2.0 disables host key checking when connecting to the localhost, which allows remote attackers to silently redirect connections to the localhost by poisoning the client's DNS cache.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →