Privilege Escalation via OpenSSH UseLogin Option

Privilege Escalation via OpenSSH UseLogin Option

CVE-2000-0525 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

OpenSSH does not properly drop privileges when the UseLogin option is enabled, which allows local users to execute arbitrary commands by providing the command to the ssh daemon.

Learn more about our User Device Pen Test.