FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

rssh -- privilege escalation vulnerability

Affected packages
rssh < 2.3.0

Details

VuXML ID e34d0c2e-9efb-11da-b410-000e0c2e438a
Discovery 2005-12-18
Entry 2006-02-16

Pizzashack reports:

Max Vozeler has reported a problem whereby rssh can allow users who have shell access to systems where rssh is installed (and rssh_chroot_helper is installed SUID) to gain root access to the system, due to the ability to chroot to arbitrary locations. There are a lot of potentially mitigating factors, but to be safe you should upgrade immediately.

References

Bugtraq ID 16050
CVE Name CVE-2005-3345
URL http://www.pizzashack.org/rssh/security.shtml