CVE-2001-1459 Information

Description

OpenSSH 2.9 and earlier does not initiate a Pluggable Authentication Module (PAM) session if commands are executed with no pty which allows local users to bypass resource limits (rlimits) set in pam.d.

Reference

http://marc.info/?l=bugtraq&m=99324968918628&w=2 http://www.kb.cert.org/vuls/id/797027 http://www.securityfocus.com/bid/2917 https://exchange.xforce.ibmcloud.com/vulnerabilities/6757