Improper Buffer Handling in OpenSSH Allows Privilege Escalation

Improper Buffer Handling in OpenSSH Allows Privilege Escalation

CVE-2016-10011 · LOW Severity

AV:L/AC:L/AU:N/C:P/I:N/A:N

authfile.c in sshd in OpenSSH before 7.4 does not properly consider the effects of realloc on buffer contents, which might allow local users to obtain sensitive private-key information by leveraging access to a privilege-separated child process.

Learn more about our User Device Pen Test.