rssh 2.0 up to and including 2.1.x expands command line arguments before entering a chroot jail, which allows remote authenticated users to determine the existence of files in a directory outside the jail.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
rssh rssh 2.0 |
||
rssh rssh 2.1 |