CVE-2006-0225 · threatengine.sh

Home/CVE/scp in OpenSSH 4.2p1 allows attackers to execute arbitrary commands via filenames that contain shell metacharacters or s

CVE

CVE-2006-0225

scp in OpenSSH 4.2p1 allows attackers to execute arbitrary commands via filenames that contain shell metacharacters or s

scp in OpenSSH 4.2p1 allows attackers to execute arbitrary commands via filenames that contain shell metacharacters or spaces, which are expanded twice.

MEDIUM · CVSS 4.6 EPSS 0.00093

Monitor

No active-exploitation, high-EPSS, or public-exploit signals - routine patching cadence

Sigma rules2 YARA rules0

▤

Affected Products & Versions

1

openbsd opensshall versions

◈

Sigma Hunt Rules

2

Exact rules name this CVE ID. Product rules name an affected product in their title. Related rules cover techniques used by actors who exploited this CVE. Showing the most relevant matches; the complete related set is on the full drill-down.

productmediumSuspicious OpenSSH Daemon Error

productmediumOpenSSH Server Listening On Socket

See all related Sigma rules for this CVE

▣

Scoring & Timeline

4.6

MEDIUM · CVSS v2 (legacy) · secalert@redhat.com

View on NVD

This CVE predates CVSS v3; the legacy v2 score is shown so triage still has a severity to work with.

v2 Vector

AV:L/AC:L/Au:N/C:P/I:P/A:P

Published to NVD25 Jan 2006 · 11:03 AM

⚑

Vendor Advisories

5

suse-csafopenSUSE-SU-2024:11124-1
rhsaRHSA-2006:0698Important
usnUSN-255-1
rhsaRHSA-2006:0044Low
rhsaRHSA-2006:0298Low

🔗

References & Sources

64

Source URLs (vendor pages, mailing lists, write-ups). Exploit/PoC links are in their own section above to avoid duplication.

ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.8/common/005_ssh.patch

ftp://patches.sgi.com/support/free/security/advisories/20060703-01-U.asc

http://blogs.sun.com/security/entry/sun_alert_102961_security_vulnerability

http://docs.info.apple.com/article.html?artnum=305214

http://itrc.hp.com/service/cki/docDisplay.do?docId=c00815112

http://lists.apple.com/archives/security-announce/2007/Mar/msg00002.html

Show all 64 references

http://secunia.com/advisories/18579

http://secunia.com/advisories/18595PatchVendor Advisory

http://secunia.com/advisories/18650

http://secunia.com/advisories/18736

http://secunia.com/advisories/18798

http://secunia.com/advisories/18850

http://secunia.com/advisories/18910

http://secunia.com/advisories/18964

http://secunia.com/advisories/18969

http://secunia.com/advisories/18970

http://secunia.com/advisories/19159

http://secunia.com/advisories/20723

http://secunia.com/advisories/21129

http://secunia.com/advisories/21262

http://secunia.com/advisories/21492

http://secunia.com/advisories/21724

http://secunia.com/advisories/22196

http://secunia.com/advisories/23241

http://secunia.com/advisories/23340

http://secunia.com/advisories/23680

http://secunia.com/advisories/24479

http://secunia.com/advisories/25607

http://secunia.com/advisories/25936

http://securityreason.com/securityalert/462

http://securitytracker.com/id?1015540

http://slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.425802

http://sunsolve.sun.com/search/document.do?assetkey=1-26-102961-1

http://support.avaya.com/elmodocs2/security/ASA-2006-158.htm

http://support.avaya.com/elmodocs2/security/ASA-2006-174.htm

http://support.avaya.com/elmodocs2/security/ASA-2006-262.htm

http://support.avaya.com/elmodocs2/security/ASA-2007-246.htm

http://www.gentoo.org/security/en/glsa/glsa-200602-11.xml

http://www.mandriva.com/security/advisories?name=MDKSA-2006:034

http://www.novell.com/linux/security/advisories/2006_08_openssh.html

http://www.openpkg.org/security/OpenPKG-SA-2006.003-openssh.html

http://www.osvdb.org/22692

http://www.redhat.com/archives/fedora-announce-list/2006-January/msg00062.html

http://www.redhat.com/support/errata/RHSA-2006-0044.html

http://www.redhat.com/support/errata/RHSA-2006-0298.html

http://www.redhat.com/support/errata/RHSA-2006-0698.html

http://www.securityfocus.com/archive/1/425397/100/0/threaded

http://www.securityfocus.com/bid/16369

http://www.trustix.org/errata/2006/0004

http://www.ubuntu.com/usn/usn-255-1

http://www.us-cert.gov/cas/techalerts/TA07-072A.htmlUS Government Resource

http://www.vmware.com/support/vi3/doc/esx-3069097-patch.html

http://www.vmware.com/support/vi3/doc/esx-9986131-patch.html

http://www.vupen.com/english/advisories/2006/0306

http://www.vupen.com/english/advisories/2006/2490

http://www.vupen.com/english/advisories/2006/4869

http://www.vupen.com/english/advisories/2007/0930

http://www.vupen.com/english/advisories/2007/2120

http://www14.software.ibm.com/webapp/set2/sas/f/hmc/power5/install/v52.Readme.html#MH00688

http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=2751

https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=174026

https://exchange.xforce.ibmcloud.com/vulnerabilities/24305

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1138

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9962

Intelligence Graph · click any node to traverse

CVETechnique ActorTool Family

drag to reposition · click any node to traverse · button top-right enlarges

External lookups - second-class, for what we don’t hold ourselves

NVD CVE.org CISA Vulners Exploit-DB GitHub PoC VulnCheck KEV GreyNoise

Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities

Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs

Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures

Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1

About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service

threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin