vulnerability
Huawei EulerOS: CVE-2019-6111: openssh security update
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 6 | (AV:N/AC:M/Au:N/C:N/I:P/A:P) | 2019-01-31 | 2020-04-16 | 2024-11-27 |
Severity
6
CVSS
(AV:N/AC:M/Au:N/C:N/I:P/A:P)
Published
2019-01-31
Added
2020-04-16
Modified
2024-11-27
Description
An issue was discovered in OpenSSH 7.9. Due to the scp implementation being derived from 1983 rcp, the server chooses which files/directories are sent to the client. However, the scp client only performs cursory validation of the object name returned (only directory traversal attacks are prevented). A malicious scp server (or Man-in-The-Middle attacker) can overwrite arbitrary files in the scp client target directory. If recursive operation (-r) is performed, the server can manipulate subdirectories as well (for example, to overwrite the .ssh/authorized_keys file).
Solution(s)
huawei-euleros-2_0_sp3-upgrade-opensshhuawei-euleros-2_0_sp3-upgrade-openssh-askpasshuawei-euleros-2_0_sp3-upgrade-openssh-clientshuawei-euleros-2_0_sp3-upgrade-openssh-keycathuawei-euleros-2_0_sp3-upgrade-openssh-server
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.