CVE-2012-2252

Incomplete blacklist vulnerability in rssh before 2.3.4, when the rsync protocol is enabled, allows local users to bypass intended restricted shell access via the –rsh command line option.

Date published : 2013-01-10

http://www.securityfocus.com/bid/56708

http://archives.neohapsis.com/archives/bugtraq/2012-11/0101.html