2 matches found
OpenSSH 'child_set_env()' Function Security Bypass Vulnerability
OpenSSH is prone to a security bypass vulnerability. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:openbsd:openssh";...
OpenSSH 'child_set_env()'函数安全绕过漏洞
Bugtraq ID:66355 CVE ID:CVE-2014-2532 OpenSSH是一种开放源码的SSH协议的实现。 OpenSSH "childsetenv"函数usr.bin/ssh/session.c存在错误,允许恶意本地用户在通配符之前使用子串来绕过环境限制。 0 OpenSSH 6.x OpenSSH 6.6已经修复该漏洞,建议用户下载更新: http://www.openssh.com...