OpenSSH UseLogin Environment Variable Passing Vulnerability

Bugtraq ID: 3614
Class: Input Validation Error
CVE:
Remote: No
Local: Yes
Published: Dec 04 2001 12:00AM
Updated: Dec 04 2001 12:00AM
Credit: This vulnerability was announced in a post to the OpenBSD Security List.
Vulnerable: OpenBSD OpenSSH 3.0.1 p1
OpenBSD OpenSSH 3.0.1
OpenBSD OpenSSH 3.0 p1
OpenBSD OpenSSH 3.0
OpenBSD OpenSSH 2.9 p2
OpenBSD OpenSSH 2.9 p1
OpenBSD OpenSSH 2.9
OpenBSD OpenSSH 2.5.2 p2
OpenBSD OpenSSH 2.5.2
OpenBSD OpenSSH 2.3.1 p1
OpenBSD OpenSSH 2.3.1
OpenBSD OpenSSH 2.1.1 p1
OpenBSD OpenSSH 2.1.1
OpenBSD OpenSSH 1.2.3
Not Vulnerable: OpenBSD OpenSSH 3.0.2 p1
OpenBSD OpenSSH 3.0.2


 

Privacy Statement
Copyright 2010, SecurityFocus