Hallo zusammen,
sofern nicht selber schon gesehen/-lesen hier [0] FYI
"scp client multiple vulnerabilities" (inkl. PoC)
- CVE-2018-20685 ('1) - CVE-2018-20684 (#2) - CVE-2019-6109 (#3) - CVE-2019-6110 (#4)
Vulnerable versions -------------------
The following software packages have some or all vulnerabilities:
ver #1 #2 #3 #4 OpenSSH scp <=7.9 x x x x PuTTY PSCP ? - - x x WinSCP scp mode <=5.13 - x - -
VG
Bernd
[0] https://sintonen.fi/advisories/scp-client-multiple-vulnerabilities.txt