scponly 4.6 and previous versions allows remote authenticated users to bypass intended restrictions and execute arbitrary code by invoking scp, as implemented by OpenSSH, with the -F and -o options.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
debian debian linux 3.1 |
||
debian debian linux 4.0 |