CVE-2003-0693

EPSS 26.8%

ssh - possible remote vulnerability

Published: 9/22/2003Modified: 4/28/2026

Description

A "buffer management error" in buffer_append_space of buffer.c for OpenSSH before 3.7 may allow remote attackers to execute arbitrary code by causing an incorrect amount of memory to be freed and corrupting the heap, a different vulnerability than CVE-2003-0695.

Affected packages (3)

Debian/opensshfrom 0, < 1:3.6.1p2-6.0
Debian/opensshfrom 0, < 1:3.4p1-1.1
Debian/opensshfrom 0, < 1:3.4p1-1.woody.2

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2003-0693