Описание
shared/inc/sql/ssh.php in the SSH accounts management implementation in Domain Technologie Control (DTC) before 0.32.9 allows remote authenticated users to delete arbitrary accounts via the edssh_account parameter in a deletesshaccount Delete action.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | not-affected | 0.32.10-1 |
| hardy | released | 0.25.3-2ubuntu1.1 |
| karmic | released | 0.29.17-1+lenny1build0.9.10.1 |
| lucid | released | 0.30.10-1ubuntu1 |
| maverick | released | 0.30.18-1ubuntu1 |
| upstream | released | 0.32.10-1 |
Показывать по
Ссылки на источники
EPSS
4 Medium
CVSS2
Связанные уязвимости
shared/inc/sql/ssh.php in the SSH accounts management implementation in Domain Technologie Control (DTC) before 0.32.9 allows remote authenticated users to delete arbitrary accounts via the edssh_account parameter in a deletesshaccount Delete action.
shared/inc/sql/ssh.php in the SSH accounts management implementation i ...
shared/inc/sql/ssh.php in the SSH accounts management implementation in Domain Technologie Control (DTC) before 0.32.9 allows remote authenticated users to delete arbitrary accounts via the edssh_account parameter in a deletesshaccount Delete action.
Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику нарушить конфиденциальность, целостность и доступность защищаемой информации
EPSS
4 Medium
CVSS2