Family: Gentoo Local Security Checks --> Category: infos
[GLSA-200512-15] rssh: Privilege escalation Vulnerability Scan
Vulnerability Scan Summary
rssh: Privilege escalation
Detailed Explanation for this Vulnerability Test
The remote host is affected by the vulnerability described in GLSA-200512-15
(rssh: Privilege escalation)
Max Vozeler discovered that the rssh_chroot_helper command allows
local users to chroot into arbitrary directories.
A local attacker could exploit this vulnerability to gain root
rights by chrooting into arbitrary directories.
There is no known workaround at this time.
All rssh users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose ">=app-shells/rssh-2.3.0"
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.