|
|
CVE Reference: CVE-2003-0787 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2003-0787 |
|
|
Description: The PAM conversation function in OpenSSH 3.7.1 and 3.7.1p1 interprets an array of structures as an array of pointers, which allows attackers to modify the stack and possibly gain privileges. |
|
|
CVE Status: Candidate |
|
|
References: FULLDISC http://lists.grok.org.uk/pipermail/full-disclosure/2003-September/010812.html CONFIRM http://www.openssh.com/txt/sshpam.adv CERT-VN 209807 BUGTRAQ http://www.securityfocus.com/archive/1/338616 http://www.securityfocus.com/archive/1/338617 BID 8677 |
|
| Return to the previous page. |
