Public Date:
214641: CVE-2006-5794 OpenSSH privilege separation flaw

The MITRE CVE dictionary describes this issue as:

Unspecified vulnerability in the sshd Privilege Separation Monitor in OpenSSH before 4.5 causes weaker verification that authentication has been successful, which might allow attackers to bypass authentication. NOTE: as of 20061108, it is believed that this issue is only exploitable by leveraging vulnerabilities in the unprivileged process, which are not known to exist.

Find out more about CVE-2006-5794 from the MITRE CVE dictionary dictionary and NIST NVD.


This issue did not affect Red Hat Enterprise Linux 2.1. This issue was addressed in Red Hat Enterprise Linux 3 and 4 via . Red Hat Enterprise Linux 5 is not vulnerable to this issue as it contains a backported patch.

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux version 4 (openssh) RHSA-2006:0738 2006-11-15
Red Hat Enterprise Linux version 3 (openssh) RHSA-2006:0738 2006-11-15