logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2017-15906

Description

The process_open function in sftp-server.c in OpenSSH before 7.6 does not properly prevent write operations in readonly mode, which allows attackers to create zero-length files.


Affected Software


CPE Name Name Version
openbsd:openssh openbsd openssh 1.2
openbsd:openssh openbsd openssh 1.5.8
openbsd:openssh openbsd openssh 2
openbsd:openssh openbsd openssh 2.5.1
openbsd:openssh openbsd openssh 2.5.2
openbsd:openssh openbsd openssh 3.0.1
openbsd:openssh openbsd openssh 3.0.1p1
openbsd:openssh openbsd openssh 3.2.2p1
openbsd:openssh openbsd openssh 3.2.3p1
openbsd:openssh openbsd openssh 3.6
openbsd:openssh openbsd openssh 3.6.1
openbsd:openssh openbsd openssh 3.8
openbsd:openssh openbsd openssh 3.8.1
openbsd:openssh openbsd openssh 3.8.1p1
openbsd:openssh openbsd openssh 4.1p1
openbsd:openssh openbsd openssh 4.2
openbsd:openssh openbsd openssh 4.5
openbsd:openssh openbsd openssh 4.6
openbsd:openssh openbsd openssh 5.1
openbsd:openssh openbsd openssh 5.2
openbsd:openssh openbsd openssh 5.5
openbsd:openssh openbsd openssh 5.6
openbsd:openssh openbsd openssh 5.9
openbsd:openssh openbsd openssh 5.9
openbsd:openssh openbsd openssh 6.3
openbsd:openssh openbsd openssh 6.3
openbsd:openssh openbsd openssh 6.7
openbsd:openssh openbsd openssh 6.7
openbsd:openssh openbsd openssh 7.1
openbsd:openssh openbsd openssh 7.1
openbsd:openssh openbsd openssh 1.2.1
openbsd:openssh openbsd openssh 1.2.2
openbsd:openssh openbsd openssh 1.2.3
openbsd:openssh openbsd openssh 2.1
openbsd:openssh openbsd openssh 2.1.1
openbsd:openssh openbsd openssh 2.9
openbsd:openssh openbsd openssh 2.9.9
openbsd:openssh openbsd openssh 3.0.2
openbsd:openssh openbsd openssh 3.0.2p1
openbsd:openssh openbsd openssh 3.0p1
openbsd:openssh openbsd openssh 3.3
openbsd:openssh openbsd openssh 3.3p1
openbsd:openssh openbsd openssh 3.6.1p1
openbsd:openssh openbsd openssh 3.6.1p2
openbsd:openssh openbsd openssh 3.9
openbsd:openssh openbsd openssh 3.9.1
openbsd:openssh openbsd openssh 4.2p1
openbsd:openssh openbsd openssh 4.3
openbsd:openssh openbsd openssh 4.7
openbsd:openssh openbsd openssh 4.7p1
openbsd:openssh openbsd openssh 5.2
openbsd:openssh openbsd openssh 5.3
openbsd:openssh openbsd openssh 5.6
openbsd:openssh openbsd openssh 5.7
openbsd:openssh openbsd openssh 6.0
openbsd:openssh openbsd openssh 6.0
openbsd:openssh openbsd openssh 6.4
openbsd:openssh openbsd openssh 6.4
openbsd:openssh openbsd openssh 6.8
openbsd:openssh openbsd openssh 6.8
openbsd:openssh openbsd openssh 7.2
openbsd:openssh openbsd openssh 7.3
openbsd:openssh openbsd openssh 7.3
openbsd:openssh openbsd openssh 1.2.27
openbsd:openssh openbsd openssh 1.3
openbsd:openssh openbsd openssh 2.2
openbsd:openssh openbsd openssh 2.3
openbsd:openssh openbsd openssh 2.9.9p2
openbsd:openssh openbsd openssh 2.9p1
openbsd:openssh openbsd openssh 3.1
openbsd:openssh openbsd openssh 3.1p1
openbsd:openssh openbsd openssh 3.4
openbsd:openssh openbsd openssh 3.4p1
openbsd:openssh openbsd openssh 3.7
openbsd:openssh openbsd openssh 3.7.1
openbsd:openssh openbsd openssh 3.9.1p1
openbsd:openssh openbsd openssh 4.0
openbsd:openssh openbsd openssh 4.3p1
openbsd:openssh openbsd openssh 4.3p2
openbsd:openssh openbsd openssh 4.8
openbsd:openssh openbsd openssh 4.9
openbsd:openssh openbsd openssh 5.3
openbsd:openssh openbsd openssh 5.4
openbsd:openssh openbsd openssh 5.7
openbsd:openssh openbsd openssh 5.8
openbsd:openssh openbsd openssh 6.1
openbsd:openssh openbsd openssh 6.1
openbsd:openssh openbsd openssh 6.2
openbsd:openssh openbsd openssh 6.5
openbsd:openssh openbsd openssh 6.5
openbsd:openssh openbsd openssh 6.9
openbsd:openssh openbsd openssh 6.9
openbsd:openssh openbsd openssh 7.4
openbsd:openssh openbsd openssh 7.4
openbsd:openssh openbsd openssh 1.5
openbsd:openssh openbsd openssh 1.5.7
openbsd:openssh openbsd openssh 2.3.1
openbsd:openssh openbsd openssh 2.5
openbsd:openssh openbsd openssh 2.9p2
openbsd:openssh openbsd openssh 3.0
openbsd:openssh openbsd openssh 3.2
openbsd:openssh openbsd openssh 3.2.2
openbsd:openssh openbsd openssh 3.5
openbsd:openssh openbsd openssh 3.5p1
openbsd:openssh openbsd openssh 3.7.1p1
openbsd:openssh openbsd openssh 3.7.1p2
openbsd:openssh openbsd openssh 4.0p1
openbsd:openssh openbsd openssh 4.1
openbsd:openssh openbsd openssh 4.4
openbsd:openssh openbsd openssh 4.4p1
openbsd:openssh openbsd openssh 5.0
openbsd:openssh openbsd openssh 5.0
openbsd:openssh openbsd openssh 5.1
openbsd:openssh openbsd openssh 5.4
openbsd:openssh openbsd openssh 5.5
openbsd:openssh openbsd openssh 5.8
openbsd:openssh openbsd openssh 5.8p2
openbsd:openssh openbsd openssh 6.2
openbsd:openssh openbsd openssh 6.2
openbsd:openssh openbsd openssh 6.6
openbsd:openssh openbsd openssh 6.6
openbsd:openssh openbsd openssh 7.0
openbsd:openssh openbsd openssh 7.0
openbsd:openssh openbsd openssh 7.5
openbsd:openssh openbsd openssh 7.5

Related