content:en_us:announcements_cve_cve-2008-1657

CVE 2008-1657

'OpenSSH 4.4 up to versions before 4.9 allows remote authenticated users to bypass the sshd_config ForceCommand directive by modifying the .ssh/rc session file.'

ClearCenter response

Short response

This CVE is addresses an issue not contained in the releases of ClearOS. ClearOS systems were never vulnerable to this bug.

Long response

All versions of ClearOS 5.x are not vulnerable to this issue. ClearOS 6 and later are also not affected by this issue.

Resolution

No action required.

content/en_us/announcements_cve_cve-2008-1657.txt · Last modified: 2014/12/22 17:39 by dloper

Page Tools