newsSavane - News: Security fix: scp restricted shell bypass

 
 
Show feedback again
Latest News
Security fix: scp restricted shell bypass posted by beuc, Thu Feb 2 22:02:09 2017 - 0 replies
New Savane release fixes symlink attack and privilege escalation posted by beuc, Wed Dec 2 22:24:18 2009 - 0 replies
Release 3.0: markup language and anti-spam tools posted by yeupou, Mon Dec 4 09:38:30 2006 - 2 replies
Release 2.0: interface heavy improvements, bugfixes and cosmetics posted by yeupou, Tue Oct 3 08:06:29 2006 - 2 replies
We need packagers! posted by yeupou, Tue Sep 19 18:09:45 2006 - 2 replies
[Submit News]
[23 news in archive]

Security fix: scp restricted shell bypass

Item posted by Beuc <beuc> on Thu Feb 2 22:02:09 2017.

Sylvain Beucler discovered that Savane version >= 1.0.1 is vulnerable to restricted shell bypass in the sv_membersh default scp configuration, resulting in local access for registered users.

If you offer scp access to your users, we recommend you modify your /etc/membersh-conf.pl file with:
$regexp_scp = "^scp( -[pdrv])* -t (-- )?/srv/download";

Version 3.0+4 includes this fix.

Comments:

No messages in Security fix: scp restricted shell bypass

 

Start a New Thread:

You could post if you were logged in
Show feedback again

Back to the top


Powered by Savane 3.1-cleanup