CVE-2006-4316 — Tectia Manager vulnerability

3 documents3 sources

Severity

7.2HIGHNVD

EPSS

0.1%

top 83.31%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

SSH Tectia Manager

Timeline

PublishedAug 23

Latest updateMay 1

Description

SSH Tectia Management Agent 2.1.2 allows local users to gain root privileges by running a program called sshd, which is obtained from a process listing when the "Restart" action is selected from the Management server GUI, which causes the agent to locate the pathname of the user's program and restart it with root privileges.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages1 packages

▶NVDssh/tectia_manager5 versions+4

Patches

Patch: www.ssh.com ↗Patch: www.ssh.com ↗

🔴Vulnerability Details

GHSA

GHSA-2q9m-cq5v-cp3v: SSH Tectia Management Agent 2↗2022-05-01

▶

CVEList

CVE-2006-4316: SSH Tectia Management Agent 2↗2006-08-23

▶