Vulnerability & Exploit Database

Displaying all 8 entries

Results for: CVE-2019-6111 Back to search

Oracle Solaris 11: CVE-2019-6111: Vulnerability in OpenSSH Vulnerability

  • Severity: 6
  • Published: January 31, 2019

An issue was discovered in OpenSSH 7.9. Due to the scp implementation being derived from 1983 rcp, the server chooses which files/directories are sent to the client. However, the scp client only performs cursory validation of the object name returned (only directory traversal attacks are prevented). A malicious scp server (or Man-in-The-...

OpenSSH Vulnerability: CVE-2019-6111 Vulnerability

  • Severity: 6
  • Published: January 31, 2019

An issue was discovered in OpenSSH 7.9. Due to the scp implementation being derived from 1983 rcp, the server chooses which files/directories are sent to the client. However, the scp client only performs cursory validation of the object name returned (only directory traversal attacks are prevented). A malicious scp server (or Man-in-The-...

Gentoo Linux: CVE-2019-6111: OpenSSH: Multiple vulnerabilities Vulnerability

  • Severity: 6
  • Published: January 31, 2019

An issue was discovered in OpenSSH 7.9. Due to the scp implementation being derived from 1983 rcp, the server chooses which files/directories are sent to the client. However, the scp client only performs cursory validation of the object name returned (only directory traversal attacks are prevented). A malicious scp server (or Man-in-The-...

Alpine Linux: CVE-2019-6111: openssh Multiple vulnerabilities Vulnerability

  • Severity: 6
  • Published: January 31, 2019

An issue was discovered in OpenSSH 7.9. Due to the scp implementation being derived from 1983 rcp, the server chooses which files/directories are sent to the client. However, the scp client only performs cursory validation of the object name returned (only directory traversal attacks are prevented). A malicious scp server (or Man-in-The-...

Ubuntu: (Multiple Advisories) (CVE-2019-6111): OpenSSH vulnerability Vulnerability

  • Severity: 6
  • Published: January 18, 2019

An issue was discovered in OpenSSH 7.9. Due to the scp implementation being derived from 1983 rcp, the server chooses which files/directories are sent to the client. However, the scp client only performs cursory validation of the object name returned (only directory traversal attacks are prevented). A malicious scp server (or Man-in-The-...

SUSE: CVE-2019-6111: SUSE Linux Security Advisory Vulnerability

  • Severity: 6
  • Published: January 18, 2019

An issue was discovered in OpenSSH 7.9. Due to the scp implementation being derived from 1983 rcp, the server chooses which files/directories are sent to the client. However, the scp client only performs cursory validation of the object name returned (only directory traversal attacks are prevented). A malicious scp server (or Man-in-The-...

Debian: CVE-2019-6111: openssh -- security update Vulnerability

  • Severity: 6
  • Published: January 18, 2019

An issue was discovered in OpenSSH 7.9. Due to the scp implementation being derived from 1983 rcp, the server chooses which files/directories are sent to the client. However, the scp client only performs cursory validation of the object name returned (only directory traversal attacks are prevented). A malicious scp server (or Man-in-The-...

F5 Networks: K21350967 (CVE-2019-6111): OpenSSH vulnerability CVE-2019-6111 Vulnerability

  • Severity: 6
  • Published: January 17, 2019

An issue was discovered in OpenSSH 7.9. Due to the scp implementation being derived from 1983 rcp, the server chooses which files/directories are sent to the client. However, the scp client only performs cursory validation of the object name returned (only directory traversal attacks are prevented). A malicious scp server (or Man-in-The-...