Vulnerabilities

CVE-2016-3115

by Fred · 22/03/2016

Multiple CRLF injection vulnerabilities in session.c in sshd in OpenSSH before 7.2p2 allow remote authenticated users to bypass intended shell-command restrictions via crafted X11 forwarding data, related to the (1) do_authenticated1 and (2) session_x11_req functions.

Date published : 2016-03-22

http://www.securityfocus.com/bid/84314

http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin/ssh/session.c

Similar

Tags: Cybersecurity Alert