CVE-2001-0816 Information

Description

OpenSSH before 2.9.9 when running sftp using sftp-server and using restricted keypairs allows remote authenticated users to bypass authorized_keys2 command= restrictions using sftp commands.

Reference

http://archives.neohapsis.com/archives/bugtraq/2001-09/0153.html http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000431 http://download.immunix.org/ImmunixOS/7.0/updates/IMNX-2001-70-034-01 http://www.osvdb.org/5536 http://www.redhat.com/support/errata/RHSA-2001-154.html https://exchange.xforce.ibmcloud.com/vulnerabilities/7634