Back to search
CVE-2016-1335
Published: Feb 19, 2016
Modified: Aug 5, 2024
PUBLISHED
Description
The SSH implementation in Cisco StarOS before 19.3.M0.62771 and 20.x before 20.0.M0.62768 on ASR 5000 devices mishandles a multi-user public-key authentication configuration, which allows remote authenticated users to gain privileges by establishing a connection from an endpoint that was previously used for an administrator's connection, aka Bug ID CSCux22492.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
20160218 Cisco ASR 5000 Series StarOS SSH Subsystem Privilege Escalation Vulnerability
vendor-advisory
x_refsource_CISCO
1035062
vdb-entry
x_refsource_SECTRACK
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now