Vulners
Lucene search
rsync Traversal Arbitrary File Creation
| Reporter | Title | Published | Views | Family All 39 |
|---|---|---|---|---|
 | rsync < 2.6.1 Traversal Arbitrary File Creation | 20 Aug 200400:00 | – | nessus |
| Debian DSA-499-2 : rsync - directory traversal | 29 Sep 200400:00 | – | nessus |
| Fedora Core 1 : rsync-2.5.7-5.fc1 (2004-116) | 23 Jul 200400:00 | – | nessus |
| FreeBSD : rsync path traversal issue (73ea0706-9c57-11d8-9366-0020ed76ef5a) | 23 Apr 200900:00 | – | nessus |
| FreeBSD : rsync path traversal issue (168) | 6 Jul 200400:00 | – | nessus |
| GLSA-200407-10 : rsync: Directory traversal in rsync daemon | 30 Aug 200400:00 | – | nessus |
| Mac OS X Multiple Vulnerabilities (Security Update 2004-09-07) | 8 Sep 200400:00 | – | nessus |
| Mandrake Linux Security Advisory : rsync (MDKSA-2004:042) | 31 Jul 200400:00 | – | nessus |
| RHEL 2.1 / 3 : rsync (RHSA-2004:192) | 6 Jul 200400:00 | – | nessus |
| Slackware 8.1 / 9.0 / 9.1 / current : rsync update (SSA:2004-124-01) | 13 Jul 200500:00 | – | nessus |
10
| Source | Link |
|---|---|
| cve | www.cve.mitre.org/cgi-bin/cvename.cgi |
#
# (C) Tenable Network Security, Inc.
#
include("compat.inc");
if (description)
{
script_id(12230);
script_version ("1.15");
script_cve_id("CVE-2004-0426");
script_bugtraq_id(10247);
script_name(english:"rsync Traversal Arbitrary File Creation");
script_set_attribute(attribute:"synopsis", value:
"Arbitrary files may be overwritten on the remote host." );
script_set_attribute(attribute:"description", value:
"The remote rsync server might be vulnerable to a path traversal
issue.
An attacker may use this flaw to gain access to arbitrary files hosted
outside of a module directory." );
script_set_attribute(attribute:"solution", value:
"Upgrade to rsync 2.6.1 or later." );
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:N");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"plugin_publication_date", value: "2004/05/06");
script_set_attribute(attribute:"vuln_publication_date", value: "2004/04/30");
script_cvs_date("Date: 2018/07/27 18:38:14");
script_set_attribute(attribute:"plugin_type", value:"remote");
script_end_attributes();
script_summary(english:"Determines if rsync is running");
script_category(ACT_GATHER_INFO);
script_family(english:"Misc.");
script_copyright(english:"This script is Copyright (C) 2004-2018 Tenable Network Security, Inc.");
script_dependencies("rsync_modules.nasl");
script_require_ports("Services/rsyncd", 873);
exit(0);
}
port = get_kb_item("Services/rsyncd");
if(!port)port = 873;
if(!get_port_state(port))exit(0);
welcome = get_kb_item("rsyncd/" + port + "/banner");
if ( ! welcome )
{
soc = open_sock_tcp(port);
if(!soc)exit(0);
welcome = recv_line(socket:soc, length:4096);
close(soc);
if(!welcome)exit(0);
}
if(ereg(pattern:"@RSYNCD: (1[0-9]|2[0-7])[^0-9]", string:welcome))
{
security_warning(port);
}
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
27 Jul 2018 18:38Current
5.6Medium risk
Vulners AI Score5.6
CVSS 25
EPSS0.03446