Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-0225

Overview

Vulnerability Score 4.6 4.6
CVE Id CVE-2006-0225
Last Modified 18 Jul 2013 09:39:42
Published 25 Jan 2006 06:03:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2006-0225

Summary

scp in OpenSSH 4.2p1 allows attackers to execute arbitrary commands via filenames that contain shell metacharacters or spaces, which are expanded twice.

Vulnerable Systems

Application

  • Openbsd Openssh 3.0

  • Openbsd Openssh 3.0.1

  • Openbsd Openssh 3.0.1p1

  • Openbsd Openssh 3.0.2

  • Openbsd Openssh 3.0.2p1

  • Openbsd Openssh 3.0p1

  • Openbsd Openssh 3.1

  • Openbsd Openssh 3.1p1

  • Openbsd Openssh 3.2

  • Openbsd Openssh 3.2.2p1

  • Openbsd Openssh 3.2.3p1

  • Openbsd Openssh 3.3

  • Openbsd Openssh 3.3p1

  • Openbsd Openssh 3.4

  • Openbsd Openssh 3.4p1

  • Openbsd Openssh 3.5

  • Openbsd Openssh 3.5p1

  • Openbsd Openssh 3.6

  • Openbsd Openssh 3.6.1

  • Openbsd Openssh 3.6.1p1

  • Openbsd Openssh 3.6.1p2

  • Openbsd Openssh 3.7

  • Openbsd Openssh 3.7.1

  • Openbsd Openssh 3.7.1p2

  • Openbsd Openssh 3.8

  • Openbsd Openssh 3.8.1

  • Openbsd Openssh 3.8.1p1

  • Openbsd Openssh 3.9

  • Openbsd Openssh 3.9.1

  • Openbsd Openssh 3.9.1p1

  • Openbsd Openssh 4.0p1

  • Openbsd Openssh 4.1p1

  • Openbsd Openssh 4.2p1


References

CERT - TA07-072A

SECUNIA - 18595

CONFIRM - https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=174026

XF - openssh-scp-command-execution(24305)

VUPEN - ADV-2007-2120

VUPEN - ADV-2007-0930

VUPEN - ADV-2006-4869

VUPEN - ADV-2006-2490

VUPEN - ADV-2006-0306

UBUNTU - USN-255-1

TRUSTIX - 2006-0004

BID - 16369

FEDORA - FLSA-2006:168935

REDHAT - RHSA-2006:0044

OSVDB - 22692

OPENPKG - OpenPKG-SA-2006.003

SUSE - SUSE-SA:2006:008

GENTOO - GLSA-200602-11

SLACKWARE - SSA:2006-045-06

SECTRACK - 1015540

SECUNIA - 19159

SECUNIA - 18970

SECUNIA - 18969

SECUNIA - 18964

SECUNIA - 18910

SECUNIA - 18850

SECUNIA - 18798

SECUNIA - 18736

SECUNIA - 18650

SECUNIA - 18579

HP - HPSBUX02178

OPENBSD - 20060212 [3.8] 005: SECURITY FIX: February 12, 2006

CONFIRM - http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=2751

CONFIRM - http://www14.software.ibm.com/webapp/set2/sas/f/hmc/power5/install/v52.Readme.html#MH00688

CONFIRM - http://www.vmware.com/support/vi3/doc/esx-9986131-patch.html

CONFIRM - http://www.vmware.com/support/vi3/doc/esx-3069097-patch.html

REDHAT - RHSA-2006:0698

REDHAT - RHSA-2006:0298

MANDRIVA - MDKSA-2006:034

CONFIRM - http://support.avaya.com/elmodocs2/security/ASA-2007-246.htm

CONFIRM - http://support.avaya.com/elmodocs2/security/ASA-2006-262.htm

CONFIRM - http://support.avaya.com/elmodocs2/security/ASA-2006-174.htm

CONFIRM - http://support.avaya.com/elmodocs2/security/ASA-2006-158.htm

SUNALERT - 102961

SREASON - 462

SECUNIA - 25936

SECUNIA - 25607

SECUNIA - 24479

SECUNIA - 23680

SECUNIA - 23340

SECUNIA - 23241

SECUNIA - 22196

SECUNIA - 21724

SECUNIA - 21492

SECUNIA - 21262

SECUNIA - 21129

SECUNIA - 20723

APPLE - APPLE-SA-2007-03-13

CONFIRM - http://docs.info.apple.com/article.html?artnum=305214

CONFIRM - http://blogs.sun.com/security/entry/sun_alert_102961_security_vulnerability

SGI - 20060703-01-P

HP - SSRT061267


Last Updated: 27 May 2016 10:42:34