SSH Secure Shell without PTY setsid() Function Privilege Escalation
High Nessus Plugin ID 11169
SynopsisThe remote SSH server is affected by a privilege escalation vulnerability.
DescriptionAccording to its banner, the version of SSH Secure Shell running on the remote host is between 2.0.13 and 3.2.1. There is a bug in such versions that may allow a non-interactive shell session, such as used in scripts, to obtain higher privileges due to a flaw in the way setsid() is used.
SolutionUpgrade to SSH Secure Shell 3.1.5 / 3.2.2 or later.