• info
• discussion
• exploit
• solution
• references

RSSH Remote Arbitrary Command Execution Vulnerability

Solution:
Gentoo Linux has released advisory GLSA 200412-01 regarding this issue. Gentoo confirms that they are vulnerable to this issue, but they do not have fixes available at this time.

The vendor has released version 2.2.3 of rssh dealing with this issue.


rssh rssh 2.0

• rssh rssh 2.2.3
  http://prdownloads.sourceforge.net/rssh/rssh-2.2.3.tar.gz?download

rssh rssh 2.1

• rssh rssh 2.2.3
  http://prdownloads.sourceforge.net/rssh/rssh-2.2.3.tar.gz?download

rssh rssh 2.2

• rssh rssh 2.2.3
  http://prdownloads.sourceforge.net/rssh/rssh-2.2.3.tar.gz?download

rssh rssh 2.2.1

• rssh rssh 2.2.3
  http://prdownloads.sourceforge.net/rssh/rssh-2.2.3.tar.gz?download

rssh rssh 2.2.2

• rssh rssh 2.2.3
  http://prdownloads.sourceforge.net/rssh/rssh-2.2.3.tar.gz?download