Advisory ID

12022

Release date

2015-11-24

Last Updated

2015-11-24

Issue Severity

LOW

Source

Source

US-CERT/NIS

Release date

2015-08-23

CVSS v2 Base Score

7.1(HIGH)

Problem Description

sshd in OpenSSH 6.8 and 6.9 uses world-writable permissions for TTY devices, which allows local users to cause a denial of service (terminal disruption) or possibly have unspecified other impact by writing to a device, as demonstrated by writing an escape sequence.

Find more about CVE-2015-6565 from MITRE CVE directory and NIST NVD.

Impact

This issue does not have any impact on the versions of OpenSSH as shipped with FoxT products.

Affected Products

No FoxT product is affected by this vulnerability.

Workaround

There is no workaround needed for this vulnerability.

Obtaining Fixed Software

N/A

External References

OpenSSH: CVE-2015-6565.








Still have questions? We can help. Submit a case to Technical Support.

Last Modified On: May 25, 2018