Moole Vulnerability Database

Find real vulnerabilities before they ship

Unknown

CVE-2000-0525

OpenSSH does not properly drop privileges when the UseLogin option is enabled, which allows local users to execute arbitrary commands by providing the command to the ssh daemon.

PublishedJun 08, 2000, 04:00

Published Bycve@mitre.org

Affected Versions

No affected versions found.

References

http://archives.neohapsis.com/archives/bugtraq/2000-06/0065.html
http://www.openbsd.org/errata.html#uselogin
http://www.osvdb.org/341
http://www.securityfocus.com/bid/1334
https://exchange.xforce.ibmcloud.com/vulnerabilities/4646

Weakness Type

NVD-CWE-Other

CVSS Metrics

Base Score

Vector String

AV:N/AC:L/Au:N/C:C/I:C/A:C

Base SeverityUnknown

Version

2.0

Attack Vector (AV)