Remote code execution vulnerability in scponly package fixed by removing support for Subversion, rsync, Unison, and preventing dangerous scp options. Upgrade to version 4.6-1etch1 for etch or 4.0-1sarge2 for sarge.
Reporter | Title | Published | Views | Family All 30 |
---|---|---|---|---|
Tenable Nessus | GLSA-200802-06 : scponly: Multiple vulnerabilities | 14 Feb 200800:00 | – | nessus |
Tenable Nessus | Debian DSA-1473-1 : scponly - design flaw | 27 Jan 200800:00 | – | nessus |
Tenable Nessus | Fedora 7 : scponly-4.6-10.fc7 (2008-1728) | 18 Feb 200800:00 | – | nessus |
Tenable Nessus | Fedora 8 : scponly-4.6-10.fc8 (2008-1743) | 18 Feb 200800:00 | – | nessus |
OpenVAS | Fedora Update for scponly FEDORA-2008-1743 | 16 Feb 200900:00 | – | openvas |
OpenVAS | Fedora Update for scponly FEDORA-2008-1728 | 16 Feb 200900:00 | – | openvas |
OpenVAS | Fedora Update for scponly FEDORA-2008-1728 | 16 Feb 200900:00 | – | openvas |
OpenVAS | Fedora Update for scponly FEDORA-2008-1743 | 16 Feb 200900:00 | – | openvas |
OpenVAS | Debian: Security Advisory (DSA-1473-1) | 31 Jan 200800:00 | – | openvas |
OpenVAS | Debian Security Advisory DSA 1473-1 (scponly) | 31 Jan 200800:00 | – | openvas |
OS | OS Version | Architecture | Package | Package Version | Filename |
---|---|---|---|---|---|
Debian | 3.1 | powerpc | scponly | 4.0-1sarge2 | scponly_4.0-1sarge2_powerpc.deb |
Debian | 3.1 | sparc | scponly | 4.0-1sarge2 | scponly_4.0-1sarge2_sparc.deb |
Debian | 4 | arm | scponly | 4.6-1etch1 | scponly_4.6-1etch1_arm.deb |
Debian | 3.1 | ia64 | scponly | 4.0-1sarge2 | scponly_4.0-1sarge2_ia64.deb |
Debian | 4 | alpha | scponly | 4.6-1etch1 | scponly_4.6-1etch1_alpha.deb |
Debian | 4 | ia64 | scponly | 4.6-1etch1 | scponly_4.6-1etch1_ia64.deb |
Debian | 3.1 | i386 | scponly | 4.0-1sarge2 | scponly_4.0-1sarge2_i386.deb |
Debian | 3.1 | all | scponly | 4.0-1sarge2 | scponly_4.0-1sarge2_all.deb |
Debian | 4 | mipsel | scponly | 4.6-1etch1 | scponly_4.6-1etch1_mipsel.deb |
Debian | 4 | all | scponly | 4.6-1etch1 | scponly_4.6-1etch1_all.deb |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo