Lucene search
FreeBSD594AD3C5-A39B-11DA-926C-0800209ADF0EHistoryFeb 13, 2006 - 12:00 a.m.
SSH.COM SFTP server -- format string vulnerability
2006-02-1300:00:00
vuxml.freebsd.org
11
6.5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
0.016 Low
EPSS
Percentile
87.4%
SSH Communications Security Corp reports a format string
vulnerability in their SFTP server. This vulnerability could
cause a user with SCP/SFTP access only to get permission to
execute also other commands. It could also allow user A to
create a special file that when accessed by user B allows
user A to execute commands as user B.
Related
nessus
nessus
GLSA-200703-13 : SSH Communications Security's Secure Shell Server: SFTP privilege escalation
2007-03-16 00:00:00
FreeBSD : SSH.COM SFTP server -- format string vulnerability (594ad3c5-a39b-11da-926c-0800209adf0e)
2006-05-13 00:00:00
AttachmateWRQ Reflection for Secure IT Server SFTP Format String
2006-02-14 00:00:00
openvas
openvas
FreeBSD Ports: ssh2, ssh2-nox11
2008-09-04 00:00:00
FreeBSD Ports: ssh2, ssh2-nox11
2008-09-04 00:00:00
Gentoo Security Advisory GLSA 200703-13 (net-misc/ssh)
2008-09-24 00:00:00
gentoo
gentoo
SSH Communications Security's Secure Shell Server: SFTP privilege escalation
2007-03-14 00:00:00
prion
prion
Format string
2006-02-15 11:06:00
kaspersky
kaspersky
KLA10152 ACE vulnerability in SFTP
2006-02-15 00:00:00
securityvulns
securityvulns
SSH SFTP client / server format string vulnerability
2006-02-16 00:00:00
cve
cve
CVE-2006-0705
2006-02-15 11:06:00
6.5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
0.016 Low
EPSS
Percentile
87.4%
Related for 594AD3C5-A39B-11DA-926C-0800209ADF0E