1. Home
  2. CVE Database
  3. CVE-2009-2904
MEDIUM · 6.9

CVE-2009-2904

A certain Red Hat modification to the ChrootDirectory feature in OpenSSH 4.8, as used in sshd in OpenSSH 4.3 in Red Hat Enterprise Linux (RHEL) 5.4 and Fedora 11, allows local users to gain privileges...

Vulnerability Description

A certain Red Hat modification to the ChrootDirectory feature in OpenSSH 4.8, as used in sshd in OpenSSH 4.3 in Red Hat Enterprise Linux (RHEL) 5.4 and Fedora 11, allows local users to gain privileges via hard links to setuid programs that use configuration files within the chroot directory, related to requirements for directory ownership.

CVSS Score

6.9

MEDIUM

AV:L/AC:M/Au:N/C:C/I:C/A:C
Confidentiality
COMPLETE
Integrity
COMPLETE
Availability
COMPLETE

Affected Products

VendorProductVersions
OpenbsdOpenssh4.3
FedoraprojectFedora11
RedhatEnterprise Linux5
RedhatEnterprise Linux Desktop5
RedhatEnterprise Linux Eus5

Related Weaknesses (CWE)

CWE-16

References

FAQ

What is CVE-2009-2904?

CVE-2009-2904 is a vulnerability with a CVSS score of 6.9 (MEDIUM). A certain Red Hat modification to the ChrootDirectory feature in OpenSSH 4.8, as used in sshd in OpenSSH 4.3 in Red Hat Enterprise Linux (RHEL) 5.4 and Fedora 11, allows local users to gain privileges...

How severe is CVE-2009-2904?

CVE-2009-2904 has been rated MEDIUM with a CVSS base score of 6.9/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2009-2904?

Check the references section above for vendor advisories and patch information. Affected products include: Openbsd Openssh, Fedoraproject Fedora, Redhat Enterprise Linux, Redhat Enterprise Linux Desktop, Redhat Enterprise Linux Eus.