Main
Vulnerability Database
Exploits
ID:6031 - Exploit for Security restrictions bypass in WinSCP - CVE-2019-6111
ID:6031 - Exploit for Security restrictions bypass in WinSCP - CVE-2019-6111
Published: June 17, 2021
Vulnerability identifier: #VU16988
Vulnerability risk: Low
CVE-ID: CVE-2019-6111
CWE-ID: CWE-20
Exploitation vector: Remote access
Vulnerable software:
WinSCP
WinSCP
Link to public exploit:
Vulnerability description
The vulnerability allows a remote attacker to bypass security restrictions on the target system.
The weakness exists due to missing received object name validation by the scp client. A malicious SCP server can overwrite arbitrary files in the SCP client target directory. If a recursive operation (-r) is performed, the server can manipulate subdirectories as well (for example overwrite .ssh/authorized_keys).
The weakness exists due to missing received object name validation by the scp client. A malicious SCP server can overwrite arbitrary files in the SCP client target directory. If a recursive operation (-r) is performed, the server can manipulate subdirectories as well (for example overwrite .ssh/authorized_keys).
Remediation
Update to version 5.14.