CVE-2015-6565
published 2015-08-24CVE-2015-6565: sshd in OpenSSH 6.8 and 6.9 uses world-writable permissions for TTY devices, which allows local users to cause a denial of service (terminal disruption) or…
PriorityP433high7.2CVSS 2.0
AVLACLAuNCCICAC
EXPLOIT
EPSS
2.60%
83.4th percentile
sshd in OpenSSH 6.8 and 6.9 uses world-writable permissions for TTY devices, which allows local users to cause a denial of service (terminal disruption) or possibly have unspecified other impact by writing to a device, as demonstrated by writing an escape sequence.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | openssh | — | — |
| openbsd | openssh | — | — |
| openbsd | openssh | — | — |
CVSS provenance
nvdv2.07.2HIGHAV:L/AC:L/Au:N/C:C/I:C/A:C
vendor_debian7.2LOW
vendor_redhat7.2HIGH
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
CISA ICS
Siemens SCALANCE X-200RNA Switch Devices
cisa_ics·2022-12-19
Siemens SCALANCE X-200RNA Switch Devices
## Archived Content In an effort to keep CISA.gov current, the archive contains outdated information that may not reflect current policy or programs.
ICS Advisory
##
Siemens SCALANCE X-200RNA Switch Devices
Last RevisedDecember 19, 2022
Alert CodeICSA-22-349-21
## 1. EXECUTIVE SUMMARY
- CVSS v3 9.8
- ATTENTION: Exploitable remotely/low attack complexity/public exploits are available
- Vendor: Siemens
- Equipment: SCALANCE X-200RNA switch devices before V3.2.7
- Vulnerabilities: Observable Timing Discrepancy; Race Condition; Improper Restriction of Operations within the Bounds of a Memory Buffer; Improper Input Validation; NULL Pointer Dereference; Use After Free; Cryptographic Issues; Comparison of Incompatible Types; Resource Management
Red Hat
openssh: Incorrectly set TTYs to be world-writable
vendor_redhat·2015-08-11·CVSS 7.2
CVE-2015-6565 [HIGH] openssh: Incorrectly set TTYs to be world-writable
openssh: Incorrectly set TTYs to be world-writable
sshd in OpenSSH 6.8 and 6.9 uses world-writable permissions for TTY devices, which allows local users to cause a denial of service (terminal disruption) or possibly have unspecified other impact by writing to a device, as demonstrated by writing an escape sequence.
Statement: This issue did not affect the versions of openssh as shipped with Red Hat Enterprise Linux 5, 6, and 7.
Package: openssh (Red Hat Enterprise Linux 4) - Not affected
Package: openssh (Red Hat Enterprise Linux 5) - Not affected
Package: openssh (Red Hat Enterprise Linux 6) - Not affected
Package: openssh (Red Hat Enterprise Linux 7) - Not affected
Debian
CVE-2015-6565: openssh - sshd in OpenSSH 6.8 and 6.9 uses world-writable permissions for TTY devices, whi...
vendor_debian·2015·CVSS 7.2
CVE-2015-6565 [HIGH] CVE-2015-6565: openssh - sshd in OpenSSH 6.8 and 6.9 uses world-writable permissions for TTY devices, whi...
sshd in OpenSSH 6.8 and 6.9 uses world-writable permissions for TTY devices, which allows local users to cause a denial of service (terminal disruption) or possibly have unspecified other impact by writing to a device, as demonstrated by writing an escape sequence.
Scope: local
bookworm: resolved
bullseye: resolved
forky: resolved
sid: resolved
trixie: resolved
GHSA
GHSA-hpw5-44xc-rfvc: sshd in OpenSSH 6
ghsa_unreviewed·2022-05-17
CVE-2015-6565 [HIGH] GHSA-hpw5-44xc-rfvc: sshd in OpenSSH 6
sshd in OpenSSH 6.8 and 6.9 uses world-writable permissions for TTY devices, which allows local users to cause a denial of service (terminal disruption) or possibly have unspecified other impact by writing to a device, as demonstrated by writing an escape sequence.
No detection rules found.
http://openwall.com/lists/oss-security/2017/01/26/2http://www.openssh.com/txt/release-7.0http://www.openwall.com/lists/oss-security/2015/08/22/1http://www.securityfocus.com/bid/76497http://www.securitytracker.com/id/1033917https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdfhttps://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05131085https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150888https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05158380https://security.gentoo.org/glsa/201512-04https://www.exploit-db.com/exploits/41173/http://openwall.com/lists/oss-security/2017/01/26/2http://www.openssh.com/txt/release-7.0http://www.openwall.com/lists/oss-security/2015/08/22/1http://www.securityfocus.com/bid/76497http://www.securitytracker.com/id/1033917https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdfhttps://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05131085https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150888https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05158380https://security.gentoo.org/glsa/201512-04https://www.exploit-db.com/exploits/41173/
2015-08-24
Published