Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-3345

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2005-3345
Last Modified 05 Sep 2008 04:54:07
Published 28 Dec 2005 05:03:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2005-3345

Summary

rssh 2.0.0 through 2.2.3 allows local users to bypass access restrictions and gain root privileges by using the rssh_chroot_helper command to chroot to an external directory.

Vulnerable Systems

Application

  • Rssh 2.0

  • Rssh 2.1

  • Rssh 2.2

  • Rssh 2.2.1

  • Rssh 2.2.2

  • Rssh 2.2.3


References

BID - 16050

GENTOO - GLSA-200512-15

SECUNIA - 18237

SECUNIA - 18224

CONFIRM - http://www.pizzashack.org/rssh/security.shtml

CONFIRM - http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=344424

XF - rssh-chroot-gain-privileges(23854)

SREASON - 308


Last Updated: 27 May 2016 10:40:54