CVE-2008-3234

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2008-3234

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2008-3234.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2008-3234

Downstream

DEBIAN-CVE-2008-3234

ECHO-003f-2632-599c

Published

2008-07-18T16:41:00Z

Modified

2026-04-10T03:40:01.163539Z

Summary

[none]

Details

sshd in OpenSSH 4 on Debian GNU/Linux, and the 20070303 OpenSSH snapshot, allows remote authenticated users to obtain access to arbitrary SELinux roles by appending a :/ (colon slash) sequence, followed by the role name, to the username.

References

http://www.securityfocus.com/bid/30276
https://exchange.xforce.ibmcloud.com/vulnerabilities/44037
https://www.exploit-db.com/exploits/6094

CVE-2008-3234

Affected packages