CVE-2012-2252

Published: Jan 11, 2013

Modified: Aug 6, 2024

PUBLISHED

Description

Incomplete blacklist vulnerability in rssh before 2.3.4, when the rsync protocol is enabled, allows local users to bypass intended restricted shell access via the --rsh command line option.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

51343

third-party-advisory

x_refsource_SECUNIA

51307

third-party-advisory

x_refsource_SECUNIA

[oss-security] 20121128 Re: rssh: incorrect filtering of command line options

mailing-list

x_refsource_MLIST

[oss-security] 20121128 rssh: incorrect filtering of command line options

mailing-list

x_refsource_MLIST

[oss-security] 20121127 Re: rssh: incorrect filtering of command line options

mailing-list

x_refsource_MLIST

DSA-2578

vendor-advisory

x_refsource_DEBIAN

rssh-command-line-command-exec(80335)

vdb-entry

x_refsource_XF

56708

vdb-entry

x_refsource_BID

https://bugzilla.redhat.com/show_bug.cgi?id=880177

x_refsource_MISC

87926

vdb-entry

x_refsource_OSVDB

20121127 Re: rssh security announcement

mailing-list

x_refsource_BUGTRAQ

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2012-2252

Description

Affected Products

References