Vulnerability & Exploit Database

Back to search

Gentoo Linux: CVE-2006-0225: OpenSSH, Dropbear: Insecure use of system() call

Severity CVSS Published Added Modified
5 (AV:L/AC:L/Au:N/C:P/I:P/A:P) January 25, 2006 October 30, 2017 October 30, 2017

Description

scp in OpenSSH 4.2p1 allows attackers to execute arbitrary commands via filenames that contain shell metacharacters or spaces, which are expanded twice.

Scan For This Vulnerability

Use our top-rated tool to discover, prioritize, and remediate your vulnerabilities

 Free InsightVM Trial

References

Solution

gentoo-linux-upgrade-net-misc-dropbear

Related Vulnerabilities