CVE-2001-1474 Information

Description

SSH before 2.0 disables host key checking when connecting to the localhost which allows remote attackers to silently redirect connections to the localhost by poisoning the client’s DNS cache.

Reference

http://www.kb.cert.org/vuls/id/786900 https://exchange.xforce.ibmcloud.com/vulnerabilities/6604