scp client multiple vulnerabilities
===
The latest version of this advisory is available at:
https://sintonen.fi/advisories/scp-client-multiple-vulnerabilities.txt
Overview
SCP clients from multiple vendors are susceptible to a malicious scp server
Affected Products
Streamworks Job Scheduler Release 7 (older/newer releases have not
been tested)
References
Secuvera-SA-2016-01
https://www.secuvera.de/advisories/secuvera-SA-2016-01.txt (used for
updates)
No CVE number could be assigned (vendor not listed under
_ _ _ _ __
| | _ ___| | _| | | | | __ _ ___| | __
| _|| | | / __| |/ / _` | | |_| |/ _` |/ __| |/ /
| |__| |_| \__ \ < (_| | | _ | (_| | (__|
On Wed, Jan 09, 2019 at 10:45:51AM +0200, Henri Salo wrote:
> On Mon, Dec 03, 2018 at 03:37:25PM +0100, Daniel Bishtawi wrote:
> > https://www.netsparker.com/web-applications-advisories/ns-18-025-reflected-cross-site-scripting-in-cubecart/
Please use CVE-2018-20703.
--
Henri Salo