CyberSec.Space Logo
CVEブラウザに戻る

CVE-2001-0816

HIGH
7.5
CVSS Severity Score
EPSS Score0.1260%
EPSS Percentile41.40th
Published2001年12月6日
Last Modified2026年4月16日

Vulnerability Description

OpenSSH before 2.9.9, when running sftp using sftp-server and using restricted keypairs, allows remote authenticated users to bypass authorized_keys2 command= restrictions using sftp commands.

Affected Platforms (CPE)

📦
Openbsd

Openssh

<= 2.9.9

References & Advisories

🔗 http://archives.neohapsis.com/archives/bugtraq/2001-09/0153.html
🔗 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000431
🔗 http://download.immunix.org/ImmunixOS/7.0/updates/IMNX-2001-70-034-01
🔗 http://www.osvdb.org/5536
🔗 http://www.redhat.com/support/errata/RHSA-2001-154.html
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/7634
🔗 http://archives.neohapsis.com/archives/bugtraq/2001-09/0153.html
🔗 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000431

関連する脆弱性情報

CVE-2000-052510.0

OpenSSH does not properly drop privileges when the UseLogin option is enabled, which allows local users to execute arbitrary comma...

CVE-2002-064010.0

Buffer overflow in sshd in OpenSSH 2.3.1 through 3.3 may allow remote attackers to execute arbitrary code via a large number of re...

CVE-1999-066110.0

A system is running a version of software that was replaced with a Trojan Horse at one of its distribution points, such as (1) TCP...

CVE-2003-069310.0

A "buffer management error" in buffer_append_space of buffer.c for OpenSSH before 3.7 may allow remote attackers to execute arbitr...