Explore top 10 tips to secure your open-source projects now. Read More
×
rsh would allow unintended modification of target directory permissions.
Software Description:
- netkit-rsh: client programs for remote shell connections
Details:
Hiroyuki Yamamori discovered that rsh incorrectly handled certain
filenames. If a user or automated system were tricked into connecting to a
malicious rsh server, a remote attacker could possibly use this issue to
modify directory permissions.
The problem can be corrected by updating your system to the following package versions: Ubuntu 18.04 LTS: rsh-client 0.17-17ubuntu0.1 rsh-server 0.17-17ubuntu0.1 In general, a standard system update will make all the necessary changes.
https://ubuntu.com/security/notices/USN-5327-1
CVE-2019-7282
Get the latest Linux and open source security news straight to your inbox.