Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2009-2904

Overview

Vulnerability Score 6.9 6.9
CVE Id CVE-2009-2904
Last Modified 08 Aug 2014 04:55:55
Published 01 Oct 2009 11:30:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity MEDIUM
Authentication NONE

CVE-2009-2904

Summary

A certain Red Hat modification to the ChrootDirectory feature in OpenSSH 4.8, as used in sshd in OpenSSH 4.3 in Red Hat Enterprise Linux (RHEL) 5.4 and Fedora 11, allows local users to gain privileges via hard links to setuid programs that use configuration files within the chroot directory, related to requirements for directory ownership.

Vulnerable Systems

Application

  • Openbsd Openssh 4.3

  • Openbsd Openssh 4.8

  • Openssh 4.3

  • Openssh 4.8


References

REDHAT - RHSA-2009:1470

CONFIRM - https://bugzilla.redhat.com/show_bug.cgi?id=522141

VUPEN - ADV-2010-0528

BID - 36552

SECUNIA - 39182

SECUNIA - 38834

SECUNIA - 38794

OSVDB - 58495

MLIST - [security-announce] 20100303 VMSA-2010-0004 ESX Service Console and vMA third party updates

FEDORA - FEDORA-2010-5429


Last Updated: 27 May 2016 10:55:16