SSH Tectia Server < 5.2.4 / 5.3.6 Local Privilege Escalation

high Nessus Network Monitor Plugin ID 4335

Synopsis

The remote host is vulnerable to a local privilege escalation flaw.

Description

The remote host is running SSH Tectia Server, a commercial SSH server. According to its banner, the installed version of this software contains a local flaw in the way that it handles command line arguments to the 'ssh-signer' binary. This flaw is only relevant to Unix machines. An attacker exploiting this flaw would need local access. Successful exploitation would result in the attacker executing code as the 'root' user.

Solution

Upgrade to version 5.2.4, 5.3.6 or higher.

See Also

http://www.kb.cert.org/vuls/id/921339

Plugin Details

Severity: High

ID: 4335

Family: SSH

Published: 1/10/2008

Updated: 3/6/2019

Risk Information

VPR

Risk Factor: Medium

Score: 5.9

CVSS v2

Risk Factor: High

Base Score: 7.2

Temporal Score: 5.3

Vector: CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C

CVSS v3

Risk Factor: High

Base Score: 8.4

Temporal Score: 7.3

Vector: CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Vulnerability Information

CPE: cpe:/a:ssh:tectia_server

Reference Information

CVE: CVE-2007-5616

BID: 27191