OpenSSH AFS/Kerberos Ticket/token Passing Network Vulnerability

Summary

You are running a version of OpenSSH older than OpenSSH 3.2.1 A buffer overflow exists in the daemon if AFS is enabled on your system, or if the options KerberosTgtPassing or AFSTokenPassing are enabled. Even in this scenario, the vulnerability may be avoided by enabling UsePrivilegeSeparation. Versions prior to 2.9.9 are vulnerable to a remote root exploit. Versions prior to 3.2.1 are vulnerable to a local root exploit.

Solution

Upgrade to the latest version of OpenSSH

Severity

Classification

CVE CVE-2002-0575
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Open WebMail vacation.pl Arbitrary Command Execution
SSH Multiple Vulns
SimpleServer remote execution
Check for Backdoor in unrealircd
PPTP overflow

OpenSSH AFS/Kerberos ticket/token passing

Take action and discover your vulnerabilities