Flaw bug created to hold information about an old flaw we knew something about. For more details see the MITRE CVE description.
Directory traversal vulnerability in scp for OpenSSH before 3.4p1 allows remote malicious servers to overwrite arbitrary files. NOTE: this may be a rediscovery of CVE-2000-0992.
Red Hat Enterprise Linux 5 is not vulnerable to this issue as it contains a backported patch.
Red Hat would like to thank the MIT Kerberos Development Team for their responsible disclosure of this issue.