SSH Tectia Server IBM z/OS Local Privilege Escalation Vulnerability
BID:23508
Info
SSH Tectia Server IBM z/OS Local Privilege Escalation Vulnerability
| Bugtraq ID: | 23508 |
| Class: | Design Error |
| CVE: | |
| Remote: | No |
| Local: | Yes |
| Published: | Apr 16 2007 12:00AM |
| Updated: | Apr 16 2007 11:01PM |
| Credit: | This issue was disclosed by the vendor. |
| Vulnerable: |
SSH Communications Security SSH Tectia Server for IBM z/OS 5.3 SSH Communications Security SSH Tectia Server for IBM z/OS 5.2.1 SSH Communications Security SSH Tectia Server for IBM z/OS 5.2 SSH Communications Security SSH Tectia Server for IBM z/OS 5.1.1 SSH Communications Security SSH Tectia Server for IBM z/OS 5.1 |
| Not Vulnerable: |
SSH Communications Security SSH Tectia Server for IBM z/OS 5.4 |
Discussion
SSH Tectia Server IBM z/OS Local Privilege Escalation Vulnerability
SSH Tectia server for IBM z/OS is prone to a local privilege-escalation vulnerability.
A local attacker may exploit this issue to gain certain elevated privileges on a vulnerable computer and launch further attacks. Successful exploits may facilitate a compromise of vulnerable computers.
This issue affects versions prior to 5.4.0.
SSH Tectia server for IBM z/OS is prone to a local privilege-escalation vulnerability.
A local attacker may exploit this issue to gain certain elevated privileges on a vulnerable computer and launch further attacks. Successful exploits may facilitate a compromise of vulnerable computers.
This issue affects versions prior to 5.4.0.
Exploit / POC
SSH Tectia Server IBM z/OS Local Privilege Escalation Vulnerability
Currently we are not aware of any exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].
Currently we are not aware of any exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].
Solution / Fix
SSH Tectia Server IBM z/OS Local Privilege Escalation Vulnerability
Solution:
The vendor has released version 5.4.0 to address this issue. Please see the references for more information.
Solution:
The vendor has released version 5.4.0 to address this issue. Please see the references for more information.
References
SSH Tectia Server IBM z/OS Local Privilege Escalation Vulnerability
References:
References:
- Vendor Homepage (SSH Communications Security)
- Release Notes for SSH Tectia Server 5.4.0 for IBM z/OS (SSH Communications Security)