← CVECheck
HomeVulnerabilities

CVE-2002-0639 — CRITICAL severity vulnerability (Integer overflow in sshd in OpenSSH 2.9.9 through 3.3 allows)

Integer overflow in sshd in OpenSSH 2.9.9 through 3.3 allows remote attackers to execute arbitrary code during challenge response authentication (ChallengeResponseAuthentication) when OpenSSH is using SKEY or BSD_AUTH authentication.

CVE IDCVE-2002-0639
SeverityCRITICAL
CVSS score9.8
CVSS vectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CWECWE-190
StatusModified
Published2002-07-03
Last modified2026-04-16
DescriptionInteger overflow in sshd in OpenSSH 2.9.9 through 3.3 allows remote attackers to execute arbitrary code during challenge response authentication (ChallengeResponseAuthentication) when OpenSSH is using SKEY or BSD_AUTH authentication.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →