FrSIRT - Fedora Security Update Fixes pam_ssh "auth_via_key()" Security Bypass Issue / Exploit (Security Advisories)

French Security Incident Response Team

French

English

Fedora Security Update Fixes pam_ssh "auth_via_key()" Security Bypass Issue

Title : Fedora Security Update Fixes pam_ssh "auth_via_key()" Security Bypass Issue
Advisory ID : FrSIRT/ADV-2007-2962
CVE ID : CVE-2007-0844
Rated as : Moderate Risk

Remotely Exploitable : Yes
Locally Exploitable : Yes
Release Date : 2007-08-27

Advisory Details

Description

Affected Products

Solution

References

Technical Description

A vulnerability has been identified in Fedora, which could be exploited by attackers to bypass security restrictions [...]

Solution

Upgrade the affected packages :

5749bf60d7f9f8c2f383f75b710535b166f98a4a pam_ssh-1.92-2.fc7.ppc64.rpm
60786869e3561dac591343cdab7e4aec1ebc27d2 pam_ssh-debuginfo-1.92-2.fc7.ppc64.rpm
651b15bed9b82a5d0b217053240cd78feb3be1bf pam_ssh-debuginfo-1.92-2.fc7.i386.rpm
815e1aa7ea24a209d13eb01aa9dbecbdc4edbe88 pam_ssh-1.92-2.fc7.i386.rpm
981b0ec76323c9d6bc164ac4cb6ea67ee44c9b8d pam_ssh-1.92-2.fc7.x86_64.rpm
ad222f1d7313e0a8e1f7cd38212a537415ed0a7e pam_ssh-debuginfo-1.92-2.fc7.x86_64.rpm
2e6ec6582c458f72a760574c9142df62ee8d5eaa pam_ssh-debuginfo-1.92-2.fc7.ppc.rpm
631d2929cbebdff19cc175f064338aaba3343ae3 pam_ssh-1.92-2.fc7.ppc.rpm
c1944da5e520923cb523a72bb0ecc6e3bb95fb37 pam_ssh-1.92-2.fc7.src.rpm

ChangeLog

2007-08-27 : Initial release

Vulnerability Management

Subscribe to FrSIRT VNS and receive real-time e-mail and SMS alerts when new vulnerabilities, exploits, or patches relevant to your systems and network configurations are available.

Feedback

If you have additional information or corrections for this security advisory please submit them via our contact form or by email to updates@frsirt.com.

Mailinglist

	Sun Solaris Tomcat JSP/Servlet Container Multiple Vulnerabilities
	Sun Java System Access Manager XSLT Code Execution Vulnerability
	Sun Solaris 10 Adobe Reader Multiple Code Execution Vulnerabilities
	Sun Solaris "snmpXdmid" Packet Handling Denial of Service Vulnerability
	Sun Solaris FreeType2 Library Multiple Memory Corruption Vulnerabilities
	Sun Java System Calendar Server Denial of Service Vulnerability
	Sun Solaris SMA SNMPv3 Authentication Bypass Vulnerability

	Oracle Products Command Execution and SQL Injection Vulnerabilities
	Oracle Products Multiple Code Execution and SQL Injection Vulnerabilities
	Oracle Database "PITRIG_DROPMETADATA" Buffer Overflow Vulnerability
	Oracle Products Multiple Code Execution and SQL Injection Vulnerabilities
	Oracle JInitiator ActiveX Control Multiple Remote Buffer Overflow Vulnerabilities
	Oracle Products Multiple Remote Command Execution and SQL Injection Vulnerabilities
	Oracle Products Multiple Remote Command Execution and SQL Injection Vulnerabilities

	Microsoft SQL Server Privilege Escalation Vulnerabilities (MS08-040)
	Microsoft Exchange Server Cross Site Scripting Issues (MS08-039)
	Microsoft Windows Explorer Remote Code Execution (MS08-038)
	Microsoft Windows Multiple DNS Spoofing Vulnerabilities (MS08-037)
	Microsoft Access Snapshot Viewer ActiveX Control Vulnerability
	Microsoft Internet Explorer Frame Cross-Domain Scripting Vulnerability
	Microsoft Internet Explorer "location" Cross-Domain Scripting Issue