File Overwrite Vulnerability in MIT krb5-appl RCP Implementation
CVE-2019-25017

5.9MEDIUM

Key Information:

Vendor: Mit
Status: Krb5-appl
Vendor: CVE Published:; 2 February 2021

What is CVE-2019-25017?

A security flaw in the rcp implementation of MIT krb5-appl allows arbitrary file overwriting by a malicious rcp server or a Man-in-The-Middle attacker. The rcp client, which only performs minimal validation of the file names received, is vulnerable when it interacts with an untrusted server. This issue poses significant risks, especially during recursive operations, permitting unauthorized modifications in directories, potentially compromising sensitive files like .ssh/authorized_keys. The affected versions of MIT krb5-appl are included in various Linux distributions, despite being unsupported upstream.

References

https://bugzilla.suse.com/show_bug.cgi?id=1131109

x_refsource_MISC

CVSS V3.1

Score:

5.9

Severity:

MEDIUM

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 2, 2021
Vulnerability Reserved
Feb 2, 2021

CVE-2019-25017 Data

JSON

Mit

What is CVE-2019-25017?

References

CVSS V3.1

Timeline