OpenSSH Information for VU#655259

OpenSSH allows arbitrary file deletion via symlink redirection of temporary file

Status

Affected

Vendor Statement

http://www.openbsd.org/errata.html#sshcookie

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Vendor References

None

Addendum

A patch to fix this problem is available at

ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.9/common/006_sshcookie.patch

If you have feedback, comments, or additional information about this vulnerability, please send us email.