Описание
rsync before 2.6.1 does not properly sanitize paths when running a read/write daemon without using chroot, which allows remote attackers to write files outside of the module's path.
Ссылки
- Vendor Advisory
- PatchVendor Advisory
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 2.6 (включая)
cpe:2.3:a:andrew_tridgell:rsync:*:*:*:*:*:*:*:*
EPSS
Процентиль: 87%
0.03446
Низкий
5 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
redhat
почти 22 года назад
rsync before 2.6.1 does not properly sanitize paths when running a read/write daemon without using chroot, which allows remote attackers to write files outside of the module's path.
debian
больше 21 года назад
rsync before 2.6.1 does not properly sanitize paths when running a rea ...
github
почти 4 года назад
rsync before 2.6.1 does not properly sanitize paths when running a read/write daemon without using chroot, which allows remote attackers to write files outside of the module's path.
EPSS
Процентиль: 87%
0.03446
Низкий
5 Medium
CVSS2
Дефекты
NVD-CWE-Other