Portable OpenSSH server PAM conversion stack corruption

Overview

There is a vulnerability in the Portable OpenSSH server that may corrupt the PAM conversion stack.

Description

The Portable OpenSSH server contains a vulnerability that may permit an attacker to corrupt the PAM conversion stack. Versions 3.7p1 and 3.7.1p1 are affected. Note that the OpenBSD-specific releases are not affected by this issue.

---

Impact

The complete impact of this vulnerability is not yet known, but may lead to privilege escalation, or a denial of service.

---

Solution

OpenSSH has announced version 3.7.1p2 to resolve this issue.

---

This issue can be mitigated by not using PAM. Set “UsePAM no” in sshd_config.

---

Vendor Information

209807

Filter by status: All Affected Not Affected Unknown

Filter by content: __ Additional information available

__ Sort by: Status Alphabetical

Expand all

Javascript is disabled. Click here to view vendors.

OpenSSH Affected

Updated: September 24, 2003

Status

Affected

Vendor Statement

We have not received a statement from the vendor.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

The CERT/CC has no additional comments at this time.

If you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:[email protected]?Subject=VU%23209807 Feedback>).

CVSS Metrics

Group	Score	Vector
Base
Temporal
Environmental

References

• http://marc.theaimsgroup.com/?l=openbsd-misc&m=106432248311634&w=2
• <http://www.openssh.com/txt/sshpam.adv&gt;

Acknowledgements

Thanks to OpenSSH for reporting this vulnerability.

This document was written by Jason A Rafail.

Other Information

CVE IDs:	CVE-2003-0787
Severity Metric:	1.50 Date Public: