Multiple Portable OpenSSH PAM Vulnerabilities

info
discussion
exploit
solution
references

Multiple Portable OpenSSH PAM Vulnerabilities

Multiple vulnerabilities have been reported to affect the Portable OpenSSH PAM support implementation. Remote attackers may be able to exploit at least one of these vulnerabilities under a nonstandard configuration with 'privsep' disabled.