The vulnerability of the OpenSSH cryptographic protection mechanism, which allows attackers to increase their privileges.

The vulnerability of the sshd component of the OpenSSH cryptographic protection is related to deficiencies in access control. Exploiting this vulnerability could allow an intruder, operating locally, to enhance their privileges by using undefined vectors related to serverloop.c, thereby enabling...

Design/Logic Flaw

sshd in OpenSSH before 7.4, when privilege separation is not used, creates forwarded Unix-domain sockets as root, which might allow local users to gain privileges via unspecified vectors, related to serverloop.c...

CVE-2016-10010

sshd in OpenSSH before 7.4, when privilege separation is not used, creates forwarded Unix-domain sockets as root, which might allow local users to gain privileges via unspecified vectors, related to serverloop.c...

CVE-2016-10010

sshd in OpenSSH before 7.4, when privilege separation is not used, creates forwarded Unix-domain sockets as root, which might allow local users to gain privileges via unspecified vectors, related to serverloop.c...

CVE-2016-10010

CVE-2016-10010 : When OpenSSH sshd runs with privilege separation disabled, forwarded Unix-domain sockets are created by root instead of the authenticated user, potentially allowing a local attacker to gain root privileges. This is a local-privilege-escalation issue tied to the serverloop/privsep...