SSH Tectia Server < 5.2.4 / 5.3.6 Local Privilege Escalation

High Nessus Network Monitor Plugin ID 4335


The remote host is vulnerable to a local privilege escalation flaw.


The remote host is running SSH Tectia Server, a commercial SSH server. According to its banner, the installed version of this software contains a local flaw in the way that it handles command line arguments to the 'ssh-signer' binary. This flaw is only relevant to Unix machines. An attacker exploiting this flaw would need local access. Successful exploitation would result in the attacker executing code as the 'root' user.


Upgrade to version 5.2.4, 5.3.6 or higher.

See Also

Plugin Details

Severity: High

ID: 4335

Family: SSH

Published: 2008/01/10

Modified: 2016/11/23

Dependencies: 1967, 3059

Risk Information

Risk Factor: High


Base Score: 7.2

Temporal Score: 5.3

Vector: CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:U/RL:OF/RC:C


Base Score: 8.4

Temporal Score: 7.3


Temporal Vector: CVSS3#E:U/RL:O/RC:C

Reference Information

CVE: CVE-2007-5616

BID: 27191