rsync prior to 3.0.0pre6, when running a writable rsync daemon that is not using chroot, allows remote malicious users to access restricted files via unknown vectors that cause rsync to create a symlink that points outside of the module's hierarchy.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
rsync rsync 2.3.2_1.2alpha |
||
rsync rsync 2.3.2_1.2arm |
||
rsync rsync 2.4.1 |
||
rsync rsync 2.4.3 |
||
rsync rsync 2.5.3 |
||
rsync rsync 2.5.4 |
||
rsync rsync 2.6.5 |
||
rsync rsync 2.6.6 |
||
rsync rsync 2.3.1 |
||
rsync rsync 2.3.2 |
||
rsync rsync 2.3.2_1.3 |
||
rsync rsync 2.4.0 |
||
rsync rsync 2.5.0 |
||
rsync rsync 2.5.1 |
||
rsync rsync 2.5.2 |
||
rsync rsync 2.6.1 |
||
rsync rsync 2.6.2 |
||
rsync rsync 2.3.2_1.2ppc |
||
rsync rsync 2.3.2_1.2sparc |
||
rsync rsync 2.4.6 |
||
rsync rsync 2.4.8 |
||
rsync rsync 2.5.7 |
||
rsync rsync 2.6 |
||
rsync rsync 2.6.9 |
||
rsync rsync 2.3.2_1.2intel |
||
rsync rsync 2.3.2_1.2m68k |
||
rsync rsync 2.4.4 |
||
rsync rsync 2.4.5 |
||
rsync rsync 2.5.5 |
||
rsync rsync 2.5.6 |
||
rsync rsync 2.6.7 |
||
rsync rsync 2.6.8 |