This script is Copyright (C) 2011-2016 Tenable Network Security, Inc.
The remote SSH service is affected by a security bypass
According to its banner, the version of OpenSSH installed on the
remote host is earlier than 4.9. It may allow a remote, authenticated
user to bypass the 'sshd_config' 'ForceCommand' directive by modifying
the '.ssh/rc' session file.
See also :
Upgrade to OpenSSH version 4.9 or later.
Risk factor :
Medium / CVSS Base Score : 6.5
CVSS Temporal Score : 5.7
Public Exploit Available : true