Auth bypass in Openbsd Openssh

CVE-2014-9278

The OpenSSH server, as used in Fedora and Red Hat Enterprise Linux 7 and when running in a Kerberos environment, allows remote authenticated users to log in as another user when they are listed in the .k5users file of that user, which migh…

Vulnerability class: Broken Authentication

EPSS: 0.004 (57.9th percentile) — read the EPSS interpretation.

Affected products

Openbsd Openssh
Redhat Enterprise_linux — versions 7.0
Redhat Fedora — versions 7
N/a — versions n/a

Weakness classification (CWE)

CWE-287 — Improper Authentication

References

71420 (vdb-entry, x_refsource_BID)
[oss-security] 20141204 Re: CVE request: OpenSSH ~/.k5users patch (Fedora and downstreams) (mailing-list, x_refsource_MLIST)
RHSA-2015:0425 (x_refsource_REDHAT, vendor-advisory)
secalert@redhat.com (x_refsource_CONFIRM)
secalert@redhat.com (x_refsource_CONFIRM)
secalert@redhat.com (x_refsource_MISC)
openssh-gssservkrb5-sec-bypass(99090) (vdb-entry, x_refsource_XF)
[oss-security] 20141202 CVE request: OpenSSH ~/.k5users patch (Fedora and downstreams) (mailing-list, x_refsource_MLIST)