OpenSSH 2.9 and previous versions does not initiate a Pluggable Authentication Module (PAM) session if commands are executed with no pty, which allows local users to bypass resource limits (rlimits) set in pam.d.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
openbsd openssh 2.3 |
||
openbsd openssh 2.5 |
||
openbsd openssh 2.5.1 |
||
openbsd openssh 2.5.2 |
||
openbsd openssh 2.1.1 |
||
openbsd openssh 2.2 |
||
openbsd openssh 2.1 |
||
openbsd openssh 2.9 |