Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 439
Alerts This Week
Warning Icon 1 439

Gentoo: GLSA-200512-17 High Severity: Scponly Multiple Privilege Escalation

gentoo
Calendar Grey December 29, 2005
Dist Gentoo Esm H88
Several vulnerability exploits identified in scponly enable local users to acquire root access. Immediate upgrading is vital.
Local users can exploit an scponly flaw to gain root privileges, and scponly restricted users can use another vulnerability to evade shell restrictions

Summary

Gentoo Linux Security Advisory GLSA 200512-17 https://security.gentoo.org/ Severity: High Title: scponly: Multiple privilege escalation issues Date: December 29, 2005 Bugs: #116526 ID: 200512-17

Synopsis ======= Local users can exploit an scponly flaw to gain root privileges, and scponly restricted users can use another vulnerability to evade shell restrictions.
Background ========= scponly is a restricted shell, allowing only a few predefined commands. It is often used as a complement to OpenSSH to provide access to remote users without providing any remote execution privileges.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 net-misc/scponly < 4.2 ...

Read the Full Advisory

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround