CVE-2000-0525

OpenSSH does not properly drop privileges when the UseLogin option is enabled, which allows local users to execute arbitrary commands by providing the command to the ssh daemon.

CVSS v2.0 10.0 HIGH

10.0^/10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 10.0 / Impact : 10.0

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://archives.neohapsis.com/archives/bugtraq/2000-06/0065.html
http://www.openbsd.org/errata.html#uselogin
http://www.securityfocus.com/bid/1334
http://www.osvdb.org/341
https://exchange.xforce.ibmcloud.com/vulnerabilities/4646

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:openbsd:openssh:1.2.3:::::::*
	cpe:2.3:a:openbsd:openssh:2.1:::::::*
	cpe:2.3:a:openbsd:openssh:1.2:::::::*

Information

Published : 2000-06-07 21:00

Updated : 2017-10-09 18:29

NVD link : CVE-2000-0525

Mitre link : CVE-2000-0525

JSON object : View

CWE

NVD-CWE-Other

Products Affected

openbsd

openssh

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://archives.neohapsis.com/archives/bugtraq/2000-06/0065.html", "name": "20000609 OpenSSH's UseLogin option allows remote access with root privilege.", "tags": [], "refsource": "BUGTRAQ"}, {"url": "http://www.openbsd.org/errata.html#uselogin", "name": "20000606 The non-default UseLogin feature in /etc/sshd_config is broken and should not be used.", "tags": [], "refsource": "OPENBSD"}, {"url": "http://www.securityfocus.com/bid/1334", "name": "1334", "tags": [], "refsource": "BID"}, {"url": "http://www.osvdb.org/341", "name": "341", "tags": [], "refsource": "OSVDB"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/4646", "name": "openssh-uselogin-remote-exec(4646)", "tags": [], "refsource": "XF"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "OpenSSH does not properly drop privileges when the UseLogin option is enabled, which allows local users to execute arbitrary commands by providing the command to the ssh daemon."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2000-0525", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 10.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "severity": "HIGH", "impactScore": 10.0, "obtainAllPrivilege": true, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}}, "publishedDate": "2000-06-08T04:00Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:openbsd:openssh:1.2.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:openbsd:openssh:2.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:openbsd:openssh:1.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2017-10-10T01:29Z"}

10.0 /10