Deprecated SSHv1 Protocol Detection

ID: CVE-2001-1473

Severity: high

Author: iamthefrogy

Tags: network,cve2001,cve,ssh,openssh,tcp

Description

SSHv1 is deprecated and has known cryptographic issues.

YAML Source

id: CVE-2001-1473

info:
  name: Deprecated SSHv1 Protocol Detection
  author: iamthefrogy
  severity: high
  description: SSHv1 is deprecated and has known cryptographic issues.
  remediation: Upgrade to SSH 2.4 or later.
  reference:
    - https://www.kb.cert.org/vuls/id/684820
    - https://nvd.nist.gov/vuln/detail/CVE-2001-1473
    - http://www.kb.cert.org/vuls/id/684820
    - https://exchange.xforce.ibmcloud.com/vulnerabilities/6603
    - https://github.com/codine7/jungle
  classification:
    cvss-metrics: CVSS:2.0/AV:N/AC:L/Au:N/C:P/I:P/A:P
    cvss-score: 7.5
    cve-id: CVE-2001-1473
    cwe-id: CWE-310
    epss-score: 0.00258
    epss-percentile: 0.65484
    cpe: cpe:2.3:a:ssh:ssh:1.2.24:*:*:*:*:*:*:*
  metadata:
    max-request: 1
    vendor: ssh
    product: ssh
  tags: network,cve2001,cve,ssh,openssh,tcp
tcp:
  - host:
      - "{{Hostname}}"
    port: 22
    matchers:
      - type: word
        words:
          - "SSH-1"
# digest: 4a0a00473045022100f5512e4d42871418745c4a637c68a394c8184f4463c709e5a1c277aef3647dad02204375ceeb5434e59a87573d740c749a5a88d674313d73dc3e3263c88625d2a265:922c64590222798bb761d5b6d8e72950

Guide to check the vulnerabilities

This template is used to detect vulnerabilities in web applications. It can be used with the Nuclei tool to scan for specific patterns or behaviors.

$ nuclei -u "URL" -t "network/cves/2001/CVE-2001-1473.yaml"

View on Github