1
Candidate: CVE-2012-3478
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3478
6
rssh 2.3.3 and earlier allows local users to bypass intended restricted
7
shell access via crafted environment variables in the command line.
13
Assigned-to: Henrik Erkkonen
16
vendor: http://www.debian.org/security/2012/dsa-2530
17
upstream_rssh: released (2.3.3-5)
18
hardy_rssh: ignored (reached end-of-life)
19
lucid_rssh: ignored (reached end-of-life)
20
natty_rssh: released (2.3.2-13squeeze1build0.11.04.1)
21
oneiric_rssh: ignored (reached end-of-life)
22
precise_rssh: ignored (reached end-of-life)
23
precise/esm_rssh: DNE (precise was needed)
24
quantal_rssh: not-affected (2.3.3-5)
25
raring_rssh: not-affected (2.3.3-5)
26
saucy_rssh: not-affected (2.3.3-5)
27
trusty_rssh: not-affected (2.3.3-5)
28
utopic_rssh: not-affected (2.3.3-5)
29
vivid_rssh: not-affected (2.3.3-5)
30
vivid/stable-phone-overlay_rssh: DNE
31
vivid/ubuntu-core_rssh: DNE
32
wily_rssh: not-affected (2.3.3-5)
33
xenial_rssh: not-affected (2.3.3-5)
34
yakkety_rssh: not-affected (2.3.3-5)
35
zesty_rssh: not-affected (2.3.3-5)
36
devel_rssh: not-affected (2.3.3-5)