Vulnerability Description
SSH Tectia Management Agent 2.1.2 allows local users to gain root privileges by running a program called sshd, which is obtained from a process listing when the "Restart" action is selected from the Management server GUI, which causes the agent to locate the pathname of the user's program and restart it with root privileges.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ssh | Tectia Manager | 1.2 |
References
- http://secunia.com/advisories/21559Vendor Advisory
- http://securitytracker.com/id?1016744
- http://www.osvdb.org/28159
- http://www.securityfocus.com/bid/19677
- http://www.ssh.com/company/news/2006/english/security/article/776/Patch
- https://exchange.xforce.ibmcloud.com/vulnerabilities/28561
- http://secunia.com/advisories/21559Vendor Advisory
- http://securitytracker.com/id?1016744
- http://www.osvdb.org/28159
- http://www.securityfocus.com/bid/19677
- http://www.ssh.com/company/news/2006/english/security/article/776/Patch
- https://exchange.xforce.ibmcloud.com/vulnerabilities/28561
FAQ
What is CVE-2006-4316?
CVE-2006-4316 is a vulnerability with a CVSS score of 7.2 (HIGH). SSH Tectia Management Agent 2.1.2 allows local users to gain root privileges by running a program called sshd, which is obtained from a process listing when the "Restart" action is selected from the M...
How severe is CVE-2006-4316?
CVE-2006-4316 has been rated HIGH with a CVSS base score of 7.2/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2006-4316?
Check the references section above for vendor advisories and patch information. Affected products include: Ssh Tectia Manager.