Lucene search
F5F5:K89621551HistoryNov 18, 2017 - 12:00 a.m.
K89621551 : OpenSSH vulnerability CVE-2017-15906
2017-11-1800:00:00
my.f5.com
134
Security Advisory Description
The process_open function in sftp-server.c in OpenSSH before 7.6 does not properly prevent write operations in readonly mode, which allows attackers to create zero-length files. (CVE-2017-15906)
Impact
BIG-IP, BIG-IQ, F5 iWorkflow, Enterprise Manager, LineRate, and ARX
There is no impact; these F5 products are not affected by this vulnerability.
Traffix SDC
The attacker may be allowed to create zero-length files on the system when the vulnerability is exploited.
| CPE | Name | Operator | Version |
|---|---|---|---|
| big-ip afm | eq | 11.5.1 | |
| big-ip afm | eq | 11.5.10 | |
| big-ip afm | eq | 11.5.2 | |
| big-ip afm | eq | 11.5.3 | |
| big-ip afm | eq | 11.5.4 | |
| big-ip afm | eq | 11.5.5 | |
| big-ip afm | eq | 11.5.6 | |
| big-ip afm | eq | 11.5.7 | |
| big-ip afm | eq | 11.5.8 | |
| big-ip afm | eq | 11.5.9 |
Related
nessus
nessus
Slackware 13.0 / 13.1 / 13.37 / 14.0 / 14.1 / 14.2 / current : openssh (SSA:2018-067-01)
2018-03-09 00:00:00
Fedora 26 : openssh (2017-4862a3bfb1)
2017-11-29 00:00:00
GLSA-201801-05 : OpenSSH: Permission issue
2018-01-08 00:00:00
ibm
ibm
openvas
openvas
Fedora Update for openssh FEDORA-2017-4862a3bfb1
2017-12-04 00:00:00
Fedora Update for openssh FEDORA-2017-78f0991378
2017-12-14 00:00:00
Fedora Update for openssh FEDORA-2017-96d1995b70
2017-12-10 00:00:00
aix
aix
Vulnerabilities in OpenSSH affect AIX.
2017-11-14 09:46:19
prion
prion
Code injection
2017-10-26 03:29:00
amazon
amazon
Low: openssh
2018-05-10 17:51:00
Low: openssh
2018-06-20 19:56:00
nvd
nvd
CVE-2017-15906
2017-10-26 03:29:00
fedora
fedora
[SECURITY] Fedora 27 Update: openssh-7.6p1-2.fc27
2017-12-10 05:10:47
[SECURITY] Fedora 25 Update: openssh-7.4p1-5.fc25
2017-12-12 14:40:46
[SECURITY] Fedora 26 Update: openssh-7.5p1-4.fc26
2017-11-28 16:31:03
oraclelinux
oraclelinux
openssh security, bug fix, and enhancement update
2018-04-16 00:00:00
gentoo
gentoo
OpenSSH: Permission issue
2018-01-07 00:00:00
redhat
redhat
(RHSA-2018:0980) Low: openssh security, bug fix, and enhancement update
2018-04-10 05:04:58
checkpoint_advisories
checkpoint_advisories
OpenSSH sftp-server.c Denial of Service (CVE-2017-15906)
2019-02-18 00:00:00
centos
centos
openssh, pam_ssh_agent_auth security update
2018-04-26 17:48:27
osv
osv
CVE-2017-15906
2017-10-26 03:29:00
openssh - security update
2018-09-10 00:00:00
ubuntucve
ubuntucve
CVE-2017-15906
2017-10-25 00:00:00
mageia
mageia
Updated openssh packages fix security vulnerability
2017-12-31 18:14:43
Updated openssh packages fix security vulnerability
2018-01-01 13:38:51
alpinelinux
alpinelinux
CVE-2017-15906
2017-10-26 03:29:00
slackware
slackware
[slackware-security] openssh
2018-03-08 09:04:05
redhatcve
redhatcve
CVE-2017-15906
2017-10-26 13:49:08
symantec
symantec
SA163: OpenSSH Vulnerability October 2017
2018-01-30 08:00:00
cve
cve
CVE-2017-15906
2017-10-26 03:29:00
debiancve
debiancve
CVE-2017-15906
2017-10-26 03:29:00
cvelist
cvelist
CVE-2017-15906
2017-10-26 00:00:00
cloudfoundry
cloudfoundry
USN-3538-1: OpenSSH vulnerabilities | Cloud Foundry
2018-02-01 00:00:00
ubuntu
ubuntu
OpenSSH vulnerabilities
2018-01-22 00:00:00
debian
debian
[SECURITY] [DLA 1500-1] openssh security update
2018-09-10 08:44:17
photon
photon
Critical Photon OS Security Update - PHSA-2017-0005
2017-12-07 00:00:00
Critical Photon OS Security Update - PHSA-2017-0091
2017-12-08 00:00:00
ics
ics
Siemens SCALANCE X-200RNA Switch Devices
2022-12-19 12:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - January 2020
2020-01-14 00:00:00