 |
Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | ||
| CVE ID: | CVE-2004-1162 |
| Description: | The unison command in scponly before 4.0 does not properly restrict programs that can be run, which could allow remote authenticated users to bypass intended access restrictions and execute arbitrary programs via the (1) -rshcmd or (2) -sshcmd flags. |
| Test IDs: | None available |
| Cross References: |
Common Vulnerability Exposure (CVE) ID: CVE-2004-1162 BugTraq ID: 11791 http://www.securityfocus.com/bid/11791 Bugtraq: 20041202 rssh and scponly arbitrary command execution (Google Search) http://marc.info/?l=bugtraq&m=110202047507273&w=2 Bugtraq: 20050115 Re: rssh and scponly arbitrary command execution (Google Search) http://marc.info/?l=bugtraq&m=110581113814623&w=2 http://www.gentoo.org/security/en/glsa/glsa-200412-01.xml XForce ISS Database: scponly-commandline-command-execution(18362) https://exchange.xforce.ibmcloud.com/vulnerabilities/18362 |