CVE-2006-0225

EPSS 0.09% · P26 Updated Feb 27, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2006-0225

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

scp in OpenSSH 4.2p1 allows attackers to execute arbitrary commands via filenames that contain shell metacharacters or spaces, which are expanded twice.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

OpenSSH SCP本地Shell命令执行漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

OpenSSH是一种开放源码的SSH协议的实现，初始版本用于OpenBSD平台，现在已经被移植到多种Unix/Linux类操作系统下。 OpenSSH 4.2及以下版本的SCP工具实现上存在漏洞，本地攻击者可能利用此漏洞在主机以高权限执行任意命令，从而提升自己的权限。 SCP工具在使用system()调用执行外部程序时没有对用户提交的参数做充分的检查，本地可以通过提交精心构造的输入数据以高权限执行任意命令。 <*链接：http://www.redhat.com/archives/fedora-announ

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2006-0225

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2006-0225

请登录查看更多情报信息。

https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=174026x_refsource_CONFIRM
http://docs.info.apple.com/article.html?artnum=305214x_refsource_CONFIRM
http://support.avaya.com/elmodocs2/security/ASA-2006-262.htmx_refsource_CONFIRM
http://www14.software.ibm.com/webapp/set2/sas/f/hmc/power5/install/v52.Readme.html#MH00688x_refsource_CONFIRM
http://support.avaya.com/elmodocs2/security/ASA-2007-246.htmx_refsource_CONFIRM
http://support.avaya.com/elmodocs2/security/ASA-2006-174.htmx_refsource_CONFIRM
http://blogs.sun.com/security/entry/sun_alert_102961_security_vulnerabilityx_refsource_CONFIRM
http://www.vmware.com/support/vi3/doc/esx-9986131-patch.htmlx_refsource_CONFIRM
http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=2751x_refsource_CONFIRM
http://support.avaya.com/elmodocs2/security/ASA-2006-158.htmx_refsource_CONFIRM
http://www.securityfocus.com/bid/16369vdb-entryx_refsource_BID
http://secunia.com/advisories/18970third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/21492third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/18736third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/23680third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/18798third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/23340third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/18595third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/21724third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/23241third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/22196third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/20723third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/19159third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/21129third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/24479third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/18650third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/18964third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/21262third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/18969third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/18579third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/25936third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/18910third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/18850third-party-advisoryx_refsource_SECUNIA
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102961-1vendor-advisoryx_refsource_SUNALERT
http://securitytracker.com/id?1015540vdb-entryx_refsource_SECTRACK
http://www.ubuntu.com/usn/usn-255-1vendor-advisoryx_refsource_UBUNTU
http://www.trustix.org/errata/2006/0004vendor-advisoryx_refsource_TRUSTIX
http://itrc.hp.com/service/cki/docDisplay.do?docId=c00815112vendor-advisoryx_refsource_HP
http://www.vupen.com/english/advisories/2006/2490vdb-entryx_refsource_VUPEN
http://www.vupen.com/english/advisories/2006/0306vdb-entryx_refsource_VUPEN
http://www.vupen.com/english/advisories/2007/0930vdb-entryx_refsource_VUPEN
http://www.vupen.com/english/advisories/2006/4869vdb-entryx_refsource_VUPEN
ftp://patches.sgi.com/support/free/security/advisories/20060703-01-U.ascvendor-advisoryx_refsource_SGI
http://www.vupen.com/english/advisories/2007/2120vdb-entryx_refsource_VUPEN
http://www.mandriva.com/security/advisories?name=MDKSA-2006:034vendor-advisoryx_refsource_MANDRIVA
http://www.redhat.com/support/errata/RHSA-2006-0298.htmlvendor-advisoryx_refsource_REDHAT
http://www.redhat.com/support/errata/RHSA-2006-0044.htmlvendor-advisoryx_refsource_REDHAT
http://www.redhat.com/support/errata/RHSA-2006-0698.htmlvendor-advisoryx_refsource_REDHAT
http://www.gentoo.org/security/en/glsa/glsa-200602-11.xmlvendor-advisoryx_refsource_GENTOO
http://www.redhat.com/archives/fedora-announce-list/2006-January/msg00062.htmlvendor-advisoryx_refsource_FEDORA
http://slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.425802vendor-advisoryx_refsource_SLACKWARE
http://www.novell.com/linux/security/advisories/2006_08_openssh.htmlvendor-advisoryx_refsource_SUSE
http://www.securityfocus.com/archive/1/425397/100/0/threadedvendor-advisoryx_refsource_FEDORA
http://www.openpkg.org/security/OpenPKG-SA-2006.003-openssh.htmlvendor-advisoryx_refsource_OPENPKG
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9962vdb-entrysignaturex_refsource_OVAL
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1138vdb-entrysignaturex_refsource_OVAL
https://exchange.xforce.ibmcloud.com/vulnerabilities/24305vdb-entryx_refsource_XF
ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.8/common/005_ssh.patchvendor-advisoryx_refsource_OPENBSD
https://nvd.nist.gov/vuln/detail/CVE-2006-0225

Same Patch Batch · n/a · 2006-01-25 · 37 CVEs total

CVE-2006-0402		Zoph SQL注入漏洞
CVE-2006-0412		CyberShop SQL注入漏洞
CVE-2006-0413		NewsPHP index.php多个远程SQL注入漏洞
CVE-2006-0414		Tor隐藏服务泄露漏洞
CVE-2006-0415		SleeperChat Index.PHP跨站脚本攻击漏洞
CVE-2006-0416		SleeperChat txt参数安全绕过漏洞
CVE-2006-0417		miniBloggie Login.PHP SQL注入漏洞
CVE-2006-0418		123 Flash Chat Eval注入漏洞
CVE-2006-0224		Eterm LibAST Library缓冲区溢出漏洞
CVE-2006-0411		Claroline 会话劫持漏洞
CVE-2006-0403		e-moBLOG多个SQL注入漏洞
CVE-2006-0404		Note-A-Day Weblog 'archive/.phpass-admin'信息泄露漏洞
CVE-2006-0405		LibTIFF TIFFFetchShortPair 拒绝服务漏洞
CVE-2006-0406		MyBB search.php 信息泄露漏洞
CVE-2006-0407		AZ Bulletin Board Post.PHP 跨站脚本攻击漏洞
CVE-2006-0408		Sun Grid Engine 未明漏洞
CVE-2006-0409		Pixelpost 跨站脚本攻击漏洞
CVE-2006-0410		ADOdb PostgreSQL SQL注入漏洞
CVE-2006-0428		BEA WebLogic多个远程或本地安全漏洞
CVE-2006-0420		BEA WebLogic Server和WebLogic Express 循环堆栈溢出错误漏洞

Showing top 20 of 37 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2006-0225

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2006-0225

I. Basic Information for CVE-2006-0225

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2006-0225

III. Intelligence Information for CVE-2006-0225

Same Patch Batch · n/a · 2006-01-25 · 37 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2006-0225

Leave a comment