|
| TC: | 12094 | |
| Description: | When OpenSSH is used in an environment using PAM, it may be possible for local users to evade restrictions enforced by PAM modules (such as rlimits). A PAM session is not initiated by OpenSSH when commands are executed in an 'rsh' manner (no pty). Some systems may rely on PAM to implement system restrictions, such as resource limits on processes. This vulnerability may allow remote users to bypass these restrictions. | |
| TC Impact: | Gather Info | |
| Service: | ssh |
| Vulnerability Publication: | Jun 19, 2001 | |
| Advisory Copyright: | Christian Kraemer | |
| Summary: | A PAM session evasion in OpenSSH 2.0 through 3.0.2 allows local users or remote malicious servers to gain privileges. | |
| Risk: | Medium | |
| CVSS 2.0 metrics: | N.A. | |
| CVSS 2.0 Base Score: | 5.0 (Approximated) |
| Vulnerability Impact: |
Attack |
|---|
| Host Impact: | Privilege escalation. | |
| Nature of Remediation: | Update the software. |
| Step required to fix the reported vulnerability: | |
***** Solution type: Undefined ***** Upgrade to the most recent version of OpenSSH in order to mitigate this vulnerabilities and previous ones. Workaround: disable SSH access until a patch is available from your vendor. Restrict access to port 22/TCP (SSH). Implement a TCPWRAPPER |
| References: | ||
| Initial advisory: http://www.securityfocus.com/archive/1/192909 CERT: http://www.kb.cert.org/vuls/id/797027 Product homepage: http://www.openssh.com/ |
| CVE Link: |
GENERIC-MAP-NOMATCH |
 |
|---|
| Glossary: |
Privilege Escalation SSH |
|---|