CVE 2008-1657
'OpenSSH 4.4 up to versions before 4.9 allows remote authenticated users to bypass the sshd_config ForceCommand directive by modifying the .ssh/rc session file.'
ClearCenter response
Short response
This CVE is addresses an issue not contained in the releases of ClearOS. ClearOS systems were never vulnerable to this bug.
Long response
All versions of ClearOS 5.x are not vulnerable to this issue. ClearOS 6 and later are also not affected by this issue.
Resolution
No action required.
Links
content/en_us/announcements_cve_cve-2008-1657.txt · Last modified: 2014/12/22 10:39 by dloper