CVE-2004-0175

CVSS v2.0

4.3

Medium

Vector

AV:N/AC:M/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions OpenSSH versions prior to 3.4p1 rsh-server-0.17 rsh-0.17

Description The issue is related to a directory traversal vulnerability in the scp component of OpenSSH, which can be exploited by remote malicious servers to overwrite arbitrary files. This vulnerability can lead to a breach of protected information integrity. The exploitation can be carried out remotely.

Recommendations For OpenSSH versions prior to 3.4p1, update to version 3.4p1 or later to resolve the issue. For rsh-server-0.17 and rsh-0.17, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Path traversal

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-22

Related Identifiers

ALT-PU-2024-3921

ALT-PU-2024-4077

ALT-PU-2024-4467

ALT-PU-2024-9513

BDU:2015-07734

BDU:2015-07735

CVE-2004-0175

RHSA-2005:074

RHSA-2005:106

RHSA-2005:165

RHSA-2005:562

RHSA-2005:567

RHSA-2005_074

RHSA-2005_106

RHSA-2005_165

RHSA-2005_562

RHSA-2005_567

Affected Products

Alt Linux

Openssh

Red Hat

Rsh

Rsh-Server

CVE-2004-0175

Weakness Enumeration

Related Identifiers

Affected Products

References · 387