OpenSSH Dynamic Port Forwarding Vulnerability

OpenSSH Dynamic Port Forwarding Vulnerability

CVE-2005-2797 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:P/A:N

OpenSSH 4.0, and other versions before 4.2, does not properly handle dynamic port forwarding ("-D" option) when a listen address is not provided, which may cause OpenSSH to enable the GatewayPorts functionality.

Learn more about our Web Application Penetration Testing UK.