This script is Copyright (C) 2011-2012 Tenable Network Security, Inc.
A file transfer client on the remote host could be abused to
overwrite arbitrary files.
According to its banner, the version of OpenSSH running on the remote
host is earlier than version 3.4p1. Such versions contain an
arbitrary file overwrite vulnerability that could allow a malicious
SSH server to cause the supplied scp utility to write to arbitrary
files outside of the current directory.
See also :
Upgrade to OpenSSH 3.4p1 or later.
Risk factor :
Medium / CVSS Base Score : 4.3
CVSS Temporal Score : 3.2
Public Exploit Available : false
Nessus Plugin ID: 17701 ()
Bugtraq ID: 9986
CVE ID: CVE-2004-0175
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.