Back to search
CVE-2000-0525
Published: Oct 13, 2000
Modified: Aug 8, 2024
PUBLISHED
Description
OpenSSH does not properly drop privileges when the UseLogin option is enabled, which allows local users to execute arbitrary commands by providing the command to the ssh daemon.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
openssh-uselogin-remote-exec(4646)
vdb-entry
x_refsource_XF
20000606 The non-default UseLogin feature in /etc/sshd_config is broken and should not be used.
vendor-advisory
x_refsource_OPENBSD
341
vdb-entry
x_refsource_OSVDB
20000609 OpenSSH's UseLogin option allows remote access with root privilege.
mailing-list
x_refsource_BUGTRAQ
1334
vdb-entry
x_refsource_BID
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now