PT-2002-1625 · Openssh+1 · Openssh+1

Published

2002-06-18

Updated

2024-07-08

CVE-2002-0575

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions OpenSSH versions prior to 2.9.9 OpenSSH versions 3.x prior to 3.2.1

Description The issue allows remote and local authenticated users to gain privileges due to a buffer overflow. This occurs when Kerberos/AFS support and either KerberosTgtPassing or AFSTokenPassing are enabled.

Recommendations For OpenSSH versions prior to 2.9.9, update to version 2.9.9 or later. For OpenSSH versions 3.x prior to 3.2.1, update to version 3.2.1 or later.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

ALT-PU-2024-3921

ALT-PU-2024-4077

ALT-PU-2024-4467

ALT-PU-2024-9513

CVE-2002-0575

Affected Products

Alt Linux

Openssh

PT-2002-1625 · Openssh+1 · Openssh+1

CVE-2002-0575

Related Identifiers

Affected Products

References · 360