CVE-2005-4533 Information

Description

Argument injection vulnerability in scponlyc in scponly 4.1 and earlier when both scp and rsync compatibility are enabled allows local users to execute arbitrary applications via \getopt\ style argument specifications which are not filtered.

Reference

http://secunia.com/advisories/18223 http://secunia.com/advisories/18236 http://sublimation.org/scponly/relnotes http://www.gentoo.org/security/en/glsa/glsa-200512-17.xml http://www.securityfocus.com/bid/16051 https://exchange.xforce.ibmcloud.com/vulnerabilities/23875