2 matches found
CVE-2004-2093
Buffer overflow in the open_socket_out function of rsync’s socket.c affects rsync 2.5.7 and earlier. A long RSYNC_PROXY environment variable can allow a local user to crash the process and potentially execute arbitrary code. Since rsync is not setuid, the impact is limited to privileges already a...
CVE-2004-2093
Buffer overflow in the opensocketout function in socket.c for rsync 2.5.7 and earlier allows local users to cause a denial of service crash and possibly execute arbitrary code via a long RSYNCPROXY environment variable. NOTE: since rsync is not setuid, this issue does not provide any additional...