This script is Copyright (C) 2006-2013 Tenable Network Security, Inc.
The remote FreeBSD host is missing one or more security-related
SSH Communications Security Corp reports a format string vulnerability
in their SFTP server. This vulnerability could cause a user with
SCP/SFTP access only to get permission to execute also other commands.
It could also allow user A to create a special file that when accessed
by user B allows user A to execute commands as user B.
See also :
Update the affected packages.
Risk factor :
Medium / CVSS Base Score : 6.5
CVSS Temporal Score : 5.4
Public Exploit Available : true
Family: FreeBSD Local Security Checks
Nessus Plugin ID: 21431 (freebsd_pkg_594ad3c5a39b11da926c0800209adf0e.nasl)
Bugtraq ID: 16640
CVE ID: CVE-2006-0705
Upgrade to Nessus Professional today!
Start your free Nessus Cloud trial now!
Begin Free Trial
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.