English | Deutsch | Español | Português
 UserID:
 Passwd:
new user
 About:   Dedicated  | Advanced  | Standard  | Recurring  | No Risk  | Desktop  | Basic  | Single  | Security Seal  | FAQ
  Price/Feature Summary  | Order  | New Vulnerabilities  | Confidentiality  | Vulnerability Search
 Vulnerability   
Search   
    Search 72022 CVE descriptions
and 38680 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2004-1161
Description:rssh 2.2.2 and earlier does not properly restrict programs that can be run, which could allow remote authenticated users to bypass intended access restrictions and execute arbitrary programs via (1) rdist -P, (2) rsync, or (3) scp -S.
Test IDs: None available
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2004-1161
Bugtraq: 20041202 rssh and scponly arbitrary command execution (Google Search)
http://marc.theaimsgroup.com/?l=bugtraq&m=110202047507273&w=2
Bugtraq: 20050115 Re: rssh and scponly arbitrary command execution (Google Search)
http://marc.theaimsgroup.com/?l=bugtraq&m=110581113814623&w=2
http://www.gentoo.org/security/en/glsa/glsa-200412-01.xml
BugTraq ID: 11792
http://www.securityfocus.com/bid/11792

New User Registration
Email:
UserID:
Passwd:
Please email me your monthly newsletters, informing the latest services, improvements & surveys.
Please email me a vulnerability test announcement whenever a new test is added.
   Privacy
Registered User Login
 
UserID:   
Passwd:  

 Forgot userid or passwd?
Email/Userid:




Home | About Us | Contact Us | Partner Programs | Privacy | Mailing Lists | Abuse
Security Audits | Managed DNS | Network Monitoring | Site Analyzer | Internet Research Reports
Web Probe | Whois

© 1998-2014 E-Soft Inc. All rights reserved.