CVE-2012-3478

🗓️ 31 Aug 2012 18:05:55Reported by redhatType

rssh 2.3.3 and earlier allows local users to bypass restricted shell access via crafted environment variables

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 28
Cvelist	CVE-2012-3478	31 Aug 201218:00	–	cvelist
Debian CVE	CVE-2012-3478	31 Aug 201218:55	–	debiancve
OpenVAS	Debian Security Advisory DSA 2530-1 (rssh)	30 Aug 201200:00	–	openvas
OpenVAS	Debian: Security Advisory (DSA-2530-1)	30 Aug 201200:00	–	openvas
OpenVAS	FreeBSD Ports: rssh	30 Aug 201200:00	–	openvas
OpenVAS	FreeBSD Ports: rssh	30 Aug 201200:00	–	openvas
OpenVAS	Gentoo Security Advisory GLSA 201311-19	29 Sep 201500:00	–	openvas
OpenVAS	Fedora Update for rssh FEDORA-2012-20109	26 Dec 201200:00	–	openvas
OpenVAS	Fedora Update for rssh FEDORA-2012-20109	26 Dec 201200:00	–	openvas
Debian	[SECURITY] [DSA 2530-1] rssh security update	15 Aug 201219:21	–	debian

Nvd

Node

pizzashack rsshRange≤2.3.2

pizzashack rsshMatch2.0.0

pizzashack rsshMatch2.0.1

pizzashack rsshMatch2.0.2

pizzashack rsshMatch2.0.3

pizzashack rsshMatch2.0.4

pizzashack rsshMatch2.1.0

pizzashack rsshMatch2.1.1

pizzashack rsshMatch2.2.1

pizzashack rsshMatch2.2.2

pizzashack rsshMatch2.2.3

pizzashack rsshMatch2.3.0

pizzashack rsshMatch2.3.1

Source	Link
archives	www.archives.neohapsis.com/archives/bugtraq/2012-05/0036.html
debian	www.debian.org/security/2012/dsa-2530
openwall	www.openwall.com/lists/oss-security/2012/11/28/3
secunia	www.secunia.com/advisories/50272
archives	www.archives.neohapsis.com/archives/bugtraq/2012-11/0101.html
securityfocus	www.securityfocus.com/bid/53430
sourceforge	www.sourceforge.net/mailarchive/message.php
openwall	www.openwall.com/lists/oss-security/2012/08/11/3
openwall	www.openwall.com/lists/oss-security/2012/08/10/7

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

31 Aug 2012 18:55Current

6.2Medium risk

Vulners AI Score6.2

CVSS22.1

EPSS0.00038

CWE-264