rsync Improper Location File Creation

2004-04-29T17:19:40
ID OSVDB:5731
Type osvdb
Reporter OSVDB
Modified 2004-04-29T17:19:40

Description

Vulnerability Description

A remote unchecked input exists in rsync. The program fails to check write inputs resulting in file write access outside the intended path. With a specially crafted request, an attacker can write files outside the module path, resulting in a loss of integrity.

Solution Description

Upgrade to version 2.6.1 or higher, as it has been reported to fix this vulnerability. It is also possible to correct the flaw by implementing the following workaround: Run rsync in a chroot environment.

Short Description

A remote unchecked input exists in rsync. The program fails to check write inputs resulting in file write access outside the intended path. With a specially crafted request, an attacker can write files outside the module path, resulting in a loss of integrity.

References:

Vendor URL: http://samba.org/rsync/ Vendor Specific Advisory URL Vendor Specific Advisory URL Vendor Specific Advisory URL Secunia Advisory ID:11514 Secunia Advisory ID:11688 Secunia Advisory ID:13048 Secunia Advisory ID:11993 Secunia Advisory ID:12054 Secunia Advisory ID:11669 Other Advisory URL: http://www.gentoo.org/security/en/glsa/glsa-200407-10.xml Other Advisory URL: http://distro.conectiva.com.br/atualizacoes/index.php?id=a&anuncio=000881 Nessus Plugin ID:14141 Nessus Plugin ID:13695 Nessus Plugin ID:12497 Nessus Plugin ID:12610 Nessus Plugin ID:12230 ISS X-Force ID: 16014 CVE-2004-0426 CIAC Advisory: o-134