Lucene search
GoogleOSV:CVE-2019-25018HistoryFeb 02, 2021 - 6:15 p.m.
CVE-2019-25018
2021-02-0218:15:11
Google
osv.dev
6
In the rcp client in MIT krb5-appl through 1.0.3, malicious servers could bypass intended access restrictions via the filename of . or an empty filename, similar to CVE-2018-20685 and CVE-2019-7282. The impact is modifying the permissions of the target directory on the client side. NOTE: MIT krb5-appl is not supported upstream but is shipped by a few Linux distributions. The affected code was removed from the supported MIT Kerberos 5 (aka krb5) product many years ago, at version 1.8.
Related
nvd
nvd
prion
prion
Design/Logic Flaw
2021-02-02 18:15:00
Design/Logic Flaw
2019-01-31 18:29:00
Directory traversal
2019-01-10 21:29:00
cvelist
cvelist
ubuntucve
ubuntucve
redhatcve
redhatcve
cve
cve
debiancve
debiancve
nessus
nessus
EulerOS 2.0 SP8 : rsh (EulerOS-SA-2022-1949)
2022-06-22 00:00:00
Ubuntu 18.04 LTS : rsh vulnerability (USN-5327-1)
2022-03-15 00:00:00
RHEL 6 : netkit-rsh (Unpatched Vulnerability)
2024-05-11 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for rsh (EulerOS-SA-2022-1949)
2022-06-22 00:00:00
Mageia: Security Advisory (MGASA-2021-0196)
2022-01-28 00:00:00
Mageia: Security Advisory (MGASA-2021-0525)
2022-01-28 00:00:00
mageia
mageia
Updated krb5-appl packages fix security vulnerabilities
2021-04-24 01:53:14
Updated rsh packages fix security vulnerability
2021-11-25 16:06:13
Updated openssh packages fix security vulnerability
2019-02-13 14:08:25
fedora
fedora
[SECURITY] Fedora 35 Update: rsh-0.17-100.fc35
2022-03-30 01:30:01
[SECURITY] Fedora 34 Update: rsh-0.17-98.fc34
2022-03-30 01:12:12
[SECURITY] Fedora 36 Update: rsh-0.17-101.fc36
2022-03-26 15:58:22
osv
osv
netkit-rsh vulnerability
2022-03-15 13:16:11
CVE-2018-20685
2019-01-10 21:29:00
netkit-rsh - security update
2021-11-19 00:00:00
ubuntu
ubuntu
rsh vulnerability
2022-03-15 00:00:00
OpenSSH vulnerabilities
2019-02-07 00:00:00
attackerkb
attackerkb
CVE-2018-20685
2019-01-10 00:00:00
f5
f5
K11315080 : OpenSSH vulnerability CVE-2018-20685
2019-01-17 00:00:00
K31781390 : January 2019 OpenSSH security vulnerabilities
2019-01-17 00:00:00
alpinelinux
alpinelinux
CVE-2018-20685
2019-01-10 21:29:00
CVE-2020-36254
2021-02-25 09:15:13
veracode
veracode
Access Restrictions Bypass
2019-11-06 00:21:13
debian
debian
[SECURITY] [DLA 2822-1] netkit-rsh security update
2021-11-18 23:07:16
[SECURITY] [DSA 4387-1] openssh security update
2019-02-09 13:29:00
[SECURITY] [DLA 1728-1] openssh security update
2019-03-25 13:46:48
photon
photon
redhat
redhat
(RHSA-2019:3702) Moderate: openssh security, bug fix, and enhancement update
2019-11-05 20:52:47
oraclelinux
oraclelinux
openssh security, bug fix, and enhancement update
2019-11-14 00:00:00
cloudfoundry
cloudfoundry
USN-3885-1: OpenSSH vulnerabilities | Cloud Foundry
2019-02-15 00:00:00
amazon
amazon
Medium: openssh
2019-05-29 19:02:00
Medium: openssh
2019-10-28 17:02:00
archlinux
archlinux
[ASA-201904-11] openssh: multiple issues
2019-04-24 00:00:00
gentoo
gentoo
Dropbear: Multiple vulnerabilities
2020-07-28 00:00:00
OpenSSH: Multiple vulnerabilities
2019-03-20 00:00:00
ibm
ibm
suse
suse
Security update for openssh (important)
2019-01-29 00:00:00
Security update for openssh (important)
2019-01-28 00:00:00
thn
thn
36-Year-Old SCP Clients' Implementation Flaws Discovered
2019-01-15 12:32:00
symantec
symantec
OpenSSH Vulnerabilities Jan-Oct 2019
2020-04-21 20:41:25
aix
aix
Vulnerabilities in OpenSSH affect AIX.
2019-07-16 09:38:57
rosalinux
rosalinux
Advisory ROSA-SA-2021-1938
2021-07-02 17:38:20
kitploit
kitploit
ics
ics
Siemens SCALANCE X-200RNA Switch Devices
2022-12-19 12:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - October 2019
2020-01-22 00:00:00
Oracle Critical Patch Update Advisory - April 2019
2019-04-16 00:00:00