Unrated severityNVD Advisory· Published Apr 2, 2008· Updated Jun 16, 2026
CVE-2008-1657
CVE-2008-1657
Description
OpenSSH 4.4 up to versions before 4.9 allows remote authenticated users to bypass the sshd_config ForceCommand directive by modifying the .ssh/rc session file.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
7cpe:2.3:a:openbsd:openssh:4.4:*:*:*:*:*:*:*+ 5 more
- cpe:2.3:a:openbsd:openssh:4.4:*:*:*:*:*:*:*
- cpe:2.3:a:openbsd:openssh:4.4p1:*:*:*:*:*:*:*
- cpe:2.3:a:openbsd:openssh:4.5:*:*:*:*:*:*:*
- cpe:2.3:a:openbsd:openssh:4.6:*:*:*:*:*:*:*
- cpe:2.3:a:openbsd:openssh:4.7:*:*:*:*:*:*:*
- cpe:2.3:a:openbsd:openssh:4.8:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
32- www.openbsd.org/errata43.htmlnvdPatch
- www.securityfocus.com/bid/28531nvdPatch
- secunia.com/advisories/29602nvdVendor Advisory
- secunia.com/advisories/29609nvdVendor Advisory
- secunia.com/advisories/29683nvdVendor Advisory
- secunia.com/advisories/29693nvdVendor Advisory
- secunia.com/advisories/29735nvdVendor Advisory
- secunia.com/advisories/29939nvdVendor Advisory
- secunia.com/advisories/30361nvdVendor Advisory
- secunia.com/advisories/31531nvdVendor Advisory
- secunia.com/advisories/31882nvdVendor Advisory
- secunia.com/advisories/32080nvdVendor Advisory
- secunia.com/advisories/32110nvdVendor Advisory
- www.openssh.com/txt/release-4.9nvdVendor Advisory
- www.vupen.com/english/advisories/2008/1035/referencesnvdVendor Advisory
- www.vupen.com/english/advisories/2008/1624/referencesnvdVendor Advisory
- www.vupen.com/english/advisories/2008/2396nvdVendor Advisory
- www.vupen.com/english/advisories/2008/2584nvdVendor Advisory
- www.us-cert.gov/cas/techalerts/TA08-260A.htmlnvdUS Government Resource
- ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2008-005.txt.ascnvd
- aix.software.ibm.com/aix/efixes/security/ssh_advisory.ascnvd
- lists.apple.com/archives/security-announce//2008/Sep/msg00005.htmlnvd
- lists.opensuse.org/opensuse-security-announce/2008-04/msg00007.htmlnvd
- support.attachmate.com/techdocs/2374.htmlnvd
- wiki.rpath.com/wiki/Advisories:rPSA-2008-0139nvd
- www.gentoo.org/security/en/glsa/glsa-200804-03.xmlnvd
- www.mandriva.com/security/advisoriesnvd
- www.securityfocus.com/archive/1/490488/100/0/threadednvd
- www.securitytracker.com/idnvd
- www.ubuntu.com/usn/usn-649-1nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/41549nvd
- issues.rpath.com/browse/RPL-2419nvd
News mentions
0No linked articles in our index yet.