Title : OpenBSD Security Update Fixes OpenSSH Shell Injection Vulnerability VUPEN ID : VUPEN/ADV-2006-0520 CVE ID : CVE-2006-0225
Rated as : Low Risk
Remotely Exploitable : No Locally Exploitable : Yes Release Date : 2006-02-12
Technical Description
OpenBSD has released security patches to address a vulnerability identified in OpenSSH. This flaw is due to an error in scp that does not properly validate filenames supplied from the command line before being passed to a "system()" function when performing a local-to-local copy, which could be exploited by malicious users to inject and execute shell commands with the privileges of the user running scp. For additional information, see : VUPEN/ADV-2006-0306
