CVE-2000-0525

Sažetak

OpenSSH does not properly drop privileges when the UseLogin option is enabled, which allows local users to execute arbitrary commands by providing the command to the ssh daemon.

Reference

http://archives.neohapsis.com/archives/bugtraq/2000-06/0065.html
http://www.openbsd.org/errata.html#uselogin
http://www.osvdb.org/341
http://www.securityfocus.com/bid/1334
https://exchange.xforce.ibmcloud.com/vulnerabilities/4646

CVSS

Base:	10.0
Impact:	10.0
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:N/AC:L/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

10-10-2017 - 01:29

Objavljeno

08-06-2000 - 04:00