CVE-2000-0525 Information

Description

OpenSSH does not properly drop privileges when the UseLogin option is enabled which allows local users to execute arbitrary commands by providing the command to the ssh daemon.

Reference

http://archives.neohapsis.com/archives/bugtraq/2000-06/0065.html http://www.openbsd.org/errata.htmluselogin http://www.osvdb.org/341 http://www.securityfocus.com/bid/1334 https://exchange.xforce.ibmcloud.com/vulnerabilities/4646