{
  "modified": "2025-08-09T19:01:28Z",
  "published": "2005-09-06T17:03:00Z",
  "id": "CVE-2005-2797",
  "details": "OpenSSH 4.0, and other versions before 4.2, does not properly handle dynamic port forwarding (\"-D\" option) when a listen address is not provided, which may cause OpenSSH to enable the GatewayPorts functionality.",
  "references": [
    {
      "type": "ADVISORY",
      "url": "http://secunia.com/advisories/18010"
    },
    {
      "type": "ADVISORY",
      "url": "http://secunia.com/advisories/18661"
    },
    {
      "type": "ADVISORY",
      "url": "http://secunia.com/advisories/19243"
    },
    {
      "type": "ADVISORY",
      "url": "http://www.mindrot.org/pipermail/openssh-unix-announce/2005-September/000083.html"
    },
    {
      "type": "FIX",
      "url": "http://secunia.com/advisories/16686"
    },
    {
      "type": "FIX",
      "url": "http://www.mindrot.org/pipermail/openssh-unix-announce/2005-September/000083.html"
    },
    {
      "type": "WEB",
      "url": "ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2006.11/SCOSA-2006.11.txt"
    },
    {
      "type": "WEB",
      "url": "ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.53/SCOSA-2005.53.txt"
    },
    {
      "type": "WEB",
      "url": "http://marc.info/?l=bugtraq\u0026m=112605977304049\u0026w=2"
    },
    {
      "type": "WEB",
      "url": "http://securitytracker.com/id?1014845"
    },
    {
      "type": "WEB",
      "url": "http://support.avaya.com/elmodocs2/security/ASA-2006-033.htm"
    },
    {
      "type": "WEB",
      "url": "http://www.osvdb.org/19142"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/14727"
    }
  ]
}