Overview
The SSH Communications Security Tectia Client and Server products are vulnerable to privilege escalation, which may allow a local user to gain root access.
Description
The SSH Tectia Client and Server products contain an unspecified privilege escalation vulnerability in ssh-signer. A local user may be able to obtain root access. According to SSH Communications Security: AFFECTED PRODUCTS |
Impact
A local user may be able to obtain root access. |
Solution
Apply an update This issue is addressed in SSH Tectia Client/Server solution 5.2.4 and 5.3.6. |
|
Vendor Information
CVSS Metrics
Group | Score | Vector |
---|---|---|
Base | ||
Temporal | ||
Environmental |
References
Acknowledgements
Thanks to Tuomas Siren for reporting this vulnerability.
This document was written by Will Dormann.
Other Information
CVE IDs: | CVE-2007-5616 |
Severity Metric: | 2.25 |
Date Public: | 2008-01-08 |
Date First Published: | 2008-01-08 |
Date Last Updated: | 2008-01-14 14:53 UTC |
Document Revision: | 6 |