CVE-2005-4533

Published: Dec 28, 2005Modified: Apr 16, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

Argument injection vulnerability in scponlyc in scponly 4.1 and earlier, when both scp and rsync compatibility are enabled, allows local users to execute arbitrary applications via "getopt" style argument specifications, which are not filtered.

Affected (8)

Products: Scponly: Scponly

1 product

Configuration A

8 vulnerable

Vulnerable Software	Affected Versions
Scponly Scponly	Version 2.0
Scponly Scponly	Version 2.1
Scponly Scponly	Version 3.0
Scponly Scponly	Version 3.11
Scponly Scponly	Version 3.5
Scponly Scponly	Version 3.8
Scponly Scponly	Version 3.9
Scponly Scponly	Version 4.1

References (12)

http://secunia.com/advisories/18223

Source: cve@mitre.org

PatchVendor Advisory

http://secunia.com/advisories/18236

Source: cve@mitre.org

http://sublimation.org/scponly/#relnotes

Source: cve@mitre.org

http://www.gentoo.org/security/en/glsa/glsa-200512-17.xml

Source: cve@mitre.org

http://www.securityfocus.com/bid/16051

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/23875

Source: cve@mitre.org

http://secunia.com/advisories/18223

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://secunia.com/advisories/18236

Source: af854a3a-2127-422b-91ae-364da2661108

http://sublimation.org/scponly/#relnotes

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.gentoo.org/security/en/glsa/glsa-200512-17.xml

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/16051

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/23875

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.