CVE-2015-6563


Severity : MEDIUM
Published : 2015-08-23
Modified : 2016-12-21
Base Score : 1.9
Details : The monitor component in sshd in OpenSSH before 7.0 on non-OpenBSD platforms accepts extraneous username data in MONITOR_REQ_PAM_INIT_CTX requests, which allows local users to conduct impersonation attacks by leveraging any SSH login access in conjunction with control of the sshd uid to send a crafted MONITOR_REQ_PWNAM request, related to monitor.c and monitor_wrap.c.
Product/Version : CGX 1.8 unspecified  
Carrier Grade CGE 7.0  
CGE 5.x  
Mobilinux 5.x  
Pro 5.0  
Carrier Grade CGE 5.1  
Carrier Grade CGE 4.0  
Pro 4.x  
CGE 4.x  
Mobilinux 4.x  
Carrier Grade CGE 6.0  
 
 
 

CVE Vulnerabilities List CVE-2015

CVE-2015-0204 CVE-2015-0209 CVE-2015-0235 CVE-2015-0247
CVE-2015-0286 CVE-2015-0287 CVE-2015-0288 CVE-2015-0289
CVE-2015-0292 CVE-2015-0293 CVE-2015-1421 CVE-2015-1572
CVE-2015-1781 CVE-2015-1788 CVE-2015-1789 CVE-2015-1790
CVE-2015-1791 CVE-2015-1792 CVE-2015-2922 CVE-2015-3195
CVE-2015-3339 CVE-2015-3405 CVE-2015-4000 CVE-2015-4022
CVE-2015-4024 CVE-2015-4047 CVE-2015-4643 CVE-2015-5312
CVE-2015-5477 CVE-2015-5600 CVE-2015-5722 CVE-2015-6563
CVE-2015-6564 CVE-2015-6565 CVE-2015-7497 CVE-2015-7498
CVE-2015-7499 CVE-2015-7500 CVE-2015-7691 CVE-2015-7692
CVE-2015-7701 CVE-2015-7702 CVE-2015-7704 CVE-2015-7852
CVE-2015-7941 CVE-2015-7942 CVE-2015-7981 CVE-2015-8126
CVE-2015-8158 CVE-2015-8241 CVE-2015-8242 CVE-2015-8317
CVE-2015-8325 CVE-2015-8472 CVE-2015-8540 CVE-2015-8665
CVE-2015-8683 CVE-2015-8704 CVE-2015-8777 CVE-2015-8778
CVE-2015-8779 CVE-2015-8784