CVE-2014-9278

OpenSSH - Privilege Escalation

Title source: llm

Description

The OpenSSH server, as used in Fedora and Red Hat Enterprise Linux 7 and when running in a Kerberos environment, allows remote authenticated users to log in as another user when they are listed in the .k5users file of that user, which might bypass intended authentication requirements that would force a local login.

References (8)

[Vendor Advisory] http://rhn.redhat.com/errata/RHSA-2015-0425.html

[Various Sources] http://thread.gmane.org/gmane.comp.encryption.kerberos.general/15855

[Issue Tracking] https://bugzilla.mindrot.org/show_bug.cgi?id=1867

[Issue Tracking] https://bugzilla.redhat.com/show_bug.cgi?id=1169843

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/99090

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/71420

[Mailing List] http://www.openwall.com/lists/oss-security/2014/12/02/3

[Mailing List] http://www.openwall.com/lists/oss-security/2014/12/04/17

Scores

EPSS 0.0035

EPSS Percentile 57.2%

Classification

CWE

CWE-287

Status draft

Affected Products (1)

openbsd/openssh

Timeline

Published Dec 06, 2014

Tracked Since Feb 18, 2026