CVE-2005-2797

EPSS 0.71%

Published: 9/6/2005Modified: 4/28/2026

Description

OpenSSH 4.0, and other versions before 4.2, does not properly handle dynamic port forwarding ("-D" option) when a listen address is not provided, which may cause OpenSSH to enable the GatewayPorts functionality.

Affected packages (1)

Debian/opensshfrom 0, < 1:4.2p1-1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2005-2797