OpenSSH Flaw Allowing Full Root Shell Access Lurked for 15 Years
Summary
A significant flaw in OpenSSH, present for 15 years, has been discovered that allows attackers to gain full root shell access. The vulnerability stems from a code reuse issue where comma characters in certificate principals were misinterpreted as list separators.
IFF Assessment
This vulnerability is bad news for defenders as it allows for unauthorized full administrative access to systems, which can lead to complete compromise.
Severity
The vulnerability allows for an attacker to gain administrative privileges (root shell access) which is a critical impact. It is likely exploitable remotely and requires minimal privileges to initiate the attack, leading to a high CVSS score.
Defender Context
This long-standing flaw highlights the importance of regular, thorough code audits and vulnerability scanning, even for widely used and trusted software like OpenSSH. Defenders should prioritize patching this vulnerability to prevent attackers from exploiting it for complete system control.