CVE-2019-3464

2019-02-06T19:29:00
ID CVE-2019-3464
Type cve
Reporter cve@mitre.org
Modified 2020-07-27T02:15:00

Description

Insufficient sanitization of environment variables passed to rsync can bypass the restrictions imposed by rssh, a restricted shell that should restrict users to perform only rsync operations, resulting in the execution of arbitrary shell commands.