Vulnerability: Local Users Bypass Restricted Shells in SSH Versions 1-3

Vulnerability: Local Users Bypass Restricted Shells in SSH Versions 1-3

CVE-2002-1715 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

SSH 1 through 3, and possibly other versions, allows local users to bypass restricted shells such as rbash or rksh by uploading a script to a world-writeable directory, then executing that script to gain normal shell access.

Learn more about our User Device Pen Test.