2005-04-21 04:00:00
mitre
PUBLISHED
SSH before 2.0, when using RC4 and password authentication, allows remote attackers to replay messages until a new server key (VK) is generated.