Explore top 10 tips to secure your open-source projects now. Read More
×Gentoo Linux Security Advisory GLSA 200512-17
https://security.gentoo.org/
Severity: High
Title: scponly: Multiple privilege escalation issues
Date: December 29, 2005
Bugs: #116526
ID: 200512-17
Synopsis
=======
Local users can exploit an scponly flaw to gain root privileges, and
scponly restricted users can use another vulnerability to evade shell
restrictions.
Background
=========
scponly is a restricted shell, allowing only a few predefined commands.
It is often used as a complement to OpenSSH to provide access to remote
users without providing any remote execution privileges.
Affected packages
================
-------------------------------------------------------------------
Package / Vulnerable / Unaffected
-------------------------------------------------------------------
1 net-misc/scponly < 4.2 ...
style>.gentoo_availability{display:block;}
Get the latest Linux and open source security news straight to your inbox.