430487 – (CVE-2007-0844) CVE-2007-0844 pam_ssh permits authentication with arbitrary string if a passphrase-less key exists

Bug 430487 (CVE-2007-0844) - CVE-2007-0844 pam_ssh permits authentication with arbitrary string if a passphrase-less key exists

Summary: CVE-2007-0844 pam_ssh permits authentication with arbitrary string if a passp...

Keywords:
Status:	CLOSED UPSTREAM
Alias:	CVE-2007-0844
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	low
Severity:	low
Target Milestone:	---
Assignee:	Red Hat Product Security
QA Contact:
Docs Contact:
URL:	http://nvd.nist.gov/nvd.cfm?cvename=C...
Whiteboard:
Depends On:	253959
Blocks:
TreeView+	depends on / blocked

Reported:	2008-01-28 14:13 UTC by Mark J. Cox
Modified:	2019-09-29 12:22 UTC (History)
CC List:	0 users
Fixed In Version:
Doc Type:	Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed:	2010-12-22 20:54:28 UTC
Embargoed:

Attachments	(Terms of Use)

Description Mark J. Cox 2008-01-28 14:13:25 UTC

Common Vulnerabilities and Exposures assigned an identifier CVE-2007-0844 to the following vulnerability:

The auth_via_key function in pam_ssh.c in pam_ssh before 1.92, when the allow_blank_passphrase option is disabled, allows remote attackers to bypass authentication restrictions and use private encryption keys requiring a blank passphrase by entering a non-blank passphrase.

References:

http://sourceforge.net/project/shownotes.php?release_id=484376
http://www.securityfocus.com/bid/22461
http://www.frsirt.com/english/advisories/2007/0524
http://secunia.com/advisories/24061

Comment 1 Dmitry Butskoy 2008-01-28 15:32:31 UTC

But we already >= 1.92  ?...

Comment 2 Tomas Hoger 2008-01-28 16:45:15 UTC

Bug was created to track this issue outside of Fedora.  Removing your email
address from CC list.

Note You need to log in before you can comment on or make changes to this bug.