CVE Vulnerabilities

CVE-2003-0787

Published: Nov 17, 2003 | Modified: Sep 10, 2008
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.5 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

The PAM conversation function in OpenSSH 3.7.1 and 3.7.1p1 interprets an array of structures as an array of pointers, which allows attackers to modify the stack and possibly gain privileges.

Affected Software

Name Vendor Start Version End Version
Openssh Openbsd 3.7.1 3.7.1
Openssh Openbsd 3.7.1p1 3.7.1p1

References