SSH Tectia Server < 5.2.4 / 5.3.6 Local Privilege Escalation

High Nessus Network Monitor Plugin ID 4335

Synopsis

The remote host is vulnerable to a local privilege escalation flaw.

Description

The remote host is running SSH Tectia Server, a commercial SSH server. According to its banner, the installed version of this software contains a local flaw in the way that it handles command line arguments to the 'ssh-signer' binary. This flaw is only relevant to Unix machines. An attacker exploiting this flaw would need local access. Successful exploitation would result in the attacker executing code as the 'root' user.

Solution

Upgrade to version 5.2.4, 5.3.6 or higher.

See Also

http://www.kb.cert.org/vuls/id/921339

Plugin Details

Severity: High

ID: 4335

Family: SSH

Published: 2008/01/10

Modified: 2016/11/23

Dependencies: 1967, 3059

Risk Information

Risk Factor: High

CVSSv2

Base Score: 7.2

Temporal Score: 5.3

Vector: CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:U/RL:OF/RC:C

CVSSv3

Base Score: 8.4

Temporal Score: 7.3

Vector: CVSS3#AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS3#E:U/RL:O/RC:C

Reference Information

CVE: CVE-2007-5616

BID: 27191