Vulnerability & Exploit Database

Back to search

FreeBSD: OpenSSH -- PAM vulnerabilities (FreeBSD-SA-15:22.openssh) (Multiple CVEs)

Severity CVSS Published Added Modified
7 (AV:L/AC:L/Au:N/C:C/I:C/A:C) August 10, 2015 August 23, 2015 February 20, 2017

Description

sshd in OpenSSH 6.8 and 6.9 uses world-writable permissions for TTY devices, which allows local users to cause a denial of service (terminal disruption) or possibly have unspecified other impact by writing to a device, as demonstrated by writing an escape sequence.

Free Nexpose Download

Discover, prioritize, and remediate security risks today!

 Download now

References

Solution

freebsd-upgrade-base-10_1-release-p19

Related Vulnerabilities