Lucene search
Copyright (C) 2008 E-Soft Inc.OPENVAS:136141256231053190HistoryJan 17, 2008 - 12:00 a.m.
Debian Security Advisory DSA 499-1 (rsync)
2008-01-1700:00:00
Copyright (C) 2008 E-Soft Inc.
plugins.openvas.org
3
The remote host is missing an update to rsync announced via advisory DSA 499-1.
This VT has been merged into the VT
# SPDX-FileCopyrightText: 2008 E-Soft Inc.
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.0.53190");
script_version("2023-06-29T08:15:14+0000");
script_tag(name:"last_modification", value:"2023-06-29 08:15:14 +0000 (Thu, 29 Jun 2023)");
script_tag(name:"creation_date", value:"2008-01-17 22:41:51 +0100 (Thu, 17 Jan 2008)");
script_cve_id("CVE-2004-0426");
script_tag(name:"cvss_base", value:"5.0");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:N/I:P/A:N");
script_name("Debian Security Advisory DSA 499-1 (rsync)");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2008 E-Soft Inc.");
script_family("Debian Local Security Checks");
script_xref(name:"URL", value:"https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20499-1");
script_xref(name:"URL", value:"http://www.securityfocus.com/bid/10247");
script_tag(name:"insight", value:"A vulnerability was discovered in rsync, a file transfer program,
whereby a remote user could cause an rsync daemon to write files
outside of the intended directory tree. This vulnerability is not
exploitable when the daemon is configured with the 'chroot' option.
For the current stable distribution (woody) this problem has been
fixed in version 2.5.5-0.4.
For the unstable distribution (sid), this problem has been fixed in
version 2.6.1-1.
We recommend that you update your rsync package.");
script_tag(name:"summary", value:"The remote host is missing an update to rsync announced via advisory DSA 499-1.
This VT has been merged into the VT 'Debian: Security Advisory (DSA-499)' (OID: 1.3.6.1.4.1.25623.1.0.53203).");
script_tag(name:"qod_type", value:"package");
script_tag(name:"solution", value:"Please install the updated package(s).");
script_tag(name:"solution_type", value:"VendorFix");
script_tag(name:"deprecated", value:TRUE);
exit(0);
}
exit(66);Related
checkpoint_advisories
checkpoint_advisories
RSync Arbitrary File Overwrite (CVE-2004-0426)
2009-12-27 00:00:00
osv
osv
rsync - directory traversal
2004-06-02 00:00:00
securityvulns
securityvulns
redhat
redhat
(RHSA-2004:192) rsync security update
2004-05-19 00:00:00
openvas
openvas
Debian Security Advisory DSA 499-2 (rsync)
2008-01-17 00:00:00
Debian Security Advisory DSA 499-2 (rsync)
2008-01-17 00:00:00
Debian Security Advisory DSA 499-1 (rsync)
2008-01-17 00:00:00
nessus
nessus
Fedora Core 1 : rsync-2.5.7-5.fc1 (2004-116)
2004-07-23 00:00:00
FreeBSD : rsync path traversal issue (168)
2004-07-06 00:00:00
Slackware 8.1 / 9.0 / 9.1 / current : rsync update (SSA:2004-124-01)
2005-07-13 00:00:00
cve
cve
CVE-2004-0426
2004-07-07 04:00:00
freebsd
freebsd
rsync path traversal issue
2004-04-26 00:00:00
cvelist
cvelist
CVE-2004-0426
2004-04-30 04:00:00
debian
debian
[SECURITY] [DSA 499-1] New rsync packages fix directory traversal bug
2004-05-01 00:00:00
[SECURITY] [DSA 499-2] New rsync packages fix directory traversal bug
2004-06-02 00:00:00
slackware
slackware
rsync update
2004-05-03 13:06:08
debiancve
debiancve
CVE-2004-0426
2004-07-07 04:00:00
gentoo
gentoo
rsync: Directory traversal in rsync daemon
2004-07-12 00:00:00
6.5 Medium
AI Score
Confidence
Low
0.035 Low
EPSS
Percentile
91.5%
Related for OPENVAS:136141256231053190