Vulnerability: Local vulnerability in OpenSSH
- 18 December, 2001 10:31
The OpenSSH team has reported a vulnerability in the OpenSSH server that allows local users to obtain root privilege if the server has the UseLogin option enabled. This option is off by default on OpenLinux, so a default installation is not vulnerable.
To find vulnerable versions and a workaround go to http://www.caldera.com/support/security/advisories/CSSA-2001-042.1.txt