Lucene search
K

2463 matches found

CVE
CVE
added 2004/04/30 4:0 a.m.80 views

CVE-2004-0426

CVE-2004-0426 : The rsync daemon (read/write mode) is vulnerable when not using chroot, allowing remote attackers to write files outside the module’s path due to improper path sanitization. Affected: rsync before 2.6.1. Impact: potential arbitrary file creation/overwrite on the target filesystem ...

5CVSS6.3AI score0.03404EPSS
Exploits0References23Affected Software1
Debian CVE
Debian CVE
added 2004/04/30 4:0 a.m.21 views

CVE-2004-0426

rsync before 2.6.1 does not properly sanitize paths when running a read/write daemon without using chroot, which allows remote attackers to write files outside of the module's path...

5CVSS6.4AI score0.03404EPSS
Exploits0
FreeBSD
FreeBSD
added 2004/04/26 12:0 a.m.19 views

rsync path traversal issue

When running rsync in daemon mode, no checks were made to prevent clients from writing outside of a module's path' setting...

5CVSS6.4AI score0.03404EPSS
Exploits0References1
exploitpack
exploitpack
added 2004/02/13 12:0 a.m.20 views

rsync 2.5.7 - Local Stack Overflow Local Privilege Escalation

rsync 2.5.7 - Local Stack Overflow Local Privilege Escalation / rsync / Includes for code to daemonize / include include include include // define PATH "/usr/local/bin/rsync" define BUFFSIZE 100 //define RET 0xbffffdfb / 88 bytes portbinding shellcode - linux-x86 - by bighawk bighawk warfare com...

0.3AI score
Exploits0
0day.today
0day.today
added 2004/02/13 12:0 a.m.29 views

rsync <= 2.5.7 Local stack overflow Root Exploit

Exploit for linux platform in category local exploits ================================================ rsync / Includes for code to daemonize / include include include include // define PATH "/usr/local/bin/rsync" define BUFFSIZE 100 //define RET 0xbffffdfb / 88 bytes portbinding shellcode -...

6.8AI score
Exploits0
Exploit DB
Exploit DB
added 2004/02/13 12:0 a.m.58 views

rsync 2.5.7 - Local Stack Overflow / Local Privilege Escalation

/ rsync / Includes for code to daemonize / include include include include // define PATH "/usr/local/bin/rsync" define BUFFSIZE 100 //define RET 0xbffffdfb / 88 bytes portbinding shellcode - linux-x86 - by bighawk bighawk warfare com This shellcode binds a shell on port 10000 stdin, stdout and...

7.4AI score
Exploits0
NVD
NVD
added 2004/02/09 5:0 a.m.14 views

CVE-2004-2093

Buffer overflow in the opensocketout function in socket.c for rsync 2.5.7 and earlier allows local users to cause a denial of service crash and possibly execute arbitrary code via a long RSYNCPROXY environment variable. NOTE: since rsync is not setuid, this issue does not provide any additional...

4.6CVSS7.6AI score0.00998EPSS
Exploits0References2
OSV
OSV
added 2004/02/09 5:0 a.m.2 views

DEBIAN-CVE-2004-2093

Buffer overflow in the opensocketout function in socket.c for rsync 2.5.7 and earlier allows local users to cause a denial of service crash and possibly execute arbitrary code via a long RSYNCPROXY environment variable. NOTE: since rsync is not setuid, this issue does not provide any additional...

4.6CVSS7.7AI score0.00998EPSS
Exploits0References1
OSV
OSV
added 2004/02/09 5:0 a.m.2 views

CVE-2004-2093

Buffer overflow in the opensocketout function in socket.c for rsync 2.5.7 and earlier allows local users to cause a denial of service crash and possibly execute arbitrary code via a long RSYNCPROXY environment variable. NOTE: since rsync is not setuid, this issue does not provide any additional...

7.9AI score
Exploits0References2
canvas
canvas
added 2003/12/15 5:0 a.m.92 views

Immunity Canvas: RSYNC

Name| rsync ---|--- CVE| CVE-2003-0962 Exploit Pack| CANVAS Description| rsync Notes| CVE Name: CVE-2003-0962 Affected: rsync prior to 2.5.7 rsync.samba.org Patch: http://samba.org/ftp/rsync/old-patches/rsync-2.5.6-2.5.7.diffs.gz NOTE: Because of some of the steps taken in this exploit to make it...

7.5CVSS1.7AI score0.21157EPSS
Exploits1
NVD
NVD
added 2003/12/15 5:0 a.m.15 views

CVE-2003-0962

Heap-based buffer overflow in rsync before 2.5.7, when running in server mode, allows remote attackers to execute arbitrary code and possibly escape the chroot jail...

7.5CVSS7.9AI score0.21157EPSS
Exploits1References27
OSV
OSV
added 2003/12/15 5:0 a.m.2 views

DEBIAN-CVE-2003-0962

Heap-based buffer overflow in rsync before 2.5.7, when running in server mode, allows remote attackers to execute arbitrary code and possibly escape the chroot jail...

7.5CVSS8.5AI score0.21157EPSS
Exploits1References1
OSV
OSV
added 2003/12/15 5:0 a.m.5 views

CVE-2003-0962

Heap-based buffer overflow in rsync before 2.5.7, when running in server mode, allows remote attackers to execute arbitrary code and possibly escape the chroot jail...

7.9AI score
Exploits0References29
Cvelist
Cvelist
added 2003/12/10 5:0 a.m.39 views

CVE-2003-0962

Heap-based buffer overflow in rsync before 2.5.7, when running in server mode, allows remote attackers to execute arbitrary code and possibly escape the chroot jail...

7.8AI score0.21157EPSS
Exploits1References27
CVE
CVE
added 2003/12/10 5:0 a.m.82 views

CVE-2003-0962

CVE-2003-0962 is a heap-based/buffer overflow in rsync versions prior to 2.5.7 when run in server mode. The vulnerability could allow a remote attacker to execute arbitrary code on the rsync server, potentially while in a chroot jail. The issue affects servers listening on port 873. Advisories fr...

7.5CVSS7.8AI score0.21157EPSS
Exploits1References27Affected Software4
Debian CVE
Debian CVE
added 2003/12/10 5:0 a.m.23 views

CVE-2003-0962

Heap-based buffer overflow in rsync before 2.5.7, when running in server mode, allows remote attackers to execute arbitrary code and possibly escape the chroot jail...

7.5CVSS7.9AI score0.21157EPSS
Exploits1
CERT
CERT
added 2003/12/09 12:0 a.m.51 views

Integer overflow vulnerability in rsync

Overview Some versions of the rsync program contain a remotely exploitable vulnerability. This vulnerability may allow an attacker to execute arbitrary code on the target system. Description rsync is an open source utility that provides fast incremental file transfer. It features the ability to...

8.3AI score
Exploits0References15
securityvulns
securityvulns
added 2003/12/05 12:0 a.m.31 views

rsync security advisory

rsync 2.5.6 security advisory ----------------------------- December 4th 2003 Background ---------- The rsync team has received evidence that a vulnerability in rsync was recently used in combination with a Linux kernel vulnerability to compromise the security of a public rsync server. While the...

0.4AI score
Exploits0
securityvulns
securityvulns
added 2003/12/05 12:0 a.m.34 views

rsync buffer overflow

Heap overflow...

3.6AI score
Exploits0References1Affected Software1
RedHat Linux
RedHat Linux
added 2003/12/04 9:14 p.m.29 views

Critical: Red Hat Security Advisory: rsync security update

Updated rsync packages are now available that fix a heap overflow in the Rsync server. rsync is a program for sychronizing files over the network. A heap overflow bug exists in rsync versions prior to 2.5.7. On machines where the rsync server has been enabled, a remote attacker could use this fla...

7.5CVSS6.2AI score0.21157EPSS
Exploits1References3
Rows per page
Query Builder