Debian ftpsync prior to 20171017 does not use the rsync --safe-links option, which allows remote malicious users to conduct directory traversal attacks via a crafted upstream mirror.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
debian ftpsync |