|Category:||Gain root remotely|
|Title:||SSH setsid() vulnerability|
|Summary:||Checks for the remote SSH version|
You are running a version of SSH which is older than version 3.1.5 or 3.2.2.
There is a bug in that version which may allow a user to obtain higher
privileges due to a flaw in the way setsid() is used.
Solution : Upgrade to the latest version of SSH
See also : http://www.ssh.com/company/newsroom/article/286/
Risk factor : High
BugTraq ID: 6247|
Common Vulnerability Exposure (CVE) ID: CVE-2002-1644
CERT/CC vulnerability note: VU#740619
XForce ISS Database: ssh-setsid-privilege-elevation(10710)
|Copyright||This script is Copyright (C) 2002 Renaud Deraison|
|This is only one of 40037 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.