Untrusted search path vulnerability in ssh-agent.c in ssh-agent in OpenSSH before 7.4 allows remote attackers to execute arbitrary local PKCS#11 modules by leveraging control over a forwarded agent-socket.
References
Configurations
History
20 Jul 2023, 18:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
20 Jul 2023, 12:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
19 Jul 2023, 20:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
19 Jul 2023, 18:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
Information
Published : 2017-01-05 02:59
Updated : 2024-02-28 15:44
NVD link : CVE-2016-10009
Mitre link : CVE-2016-10009
CVE.ORG link : CVE-2016-10009
JSON object : View
Products Affected
openbsd
- openssh
CWE
CWE-426
Untrusted Search Path