15 matches found
K15548: Rsync sender.c vulnerability CVE-2007-4091
Security Advisory Description Multiple off-by-one errors in the sender.c in rsync 2.6.9 might allow remote attackers to execute arbitrary code via directory names that are not properly handled when calling the fname function. CVE-2007-4091 Impact There is no impact; F5 products are not affected b...
SOL15548 - Rsync sender.c vulnerability CVE-2007-4091
Recommended Action None Supplemental Information SOL9970: Subscribing to email notifications regarding F5 products SOL9957: Creating a custom RSS feed to view new and updated documents SOL4602: Overview of the F5 security vulnerability response policy SOL4918: Overview of the F5 critical issue...
SLES9: Security update for rsync
The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: rsync For more information, please visit the referenced security advisories. More details may also be found by searching for keyword 5013260 within the SuSE...
SLES9: Security update for rsync
The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: rsync For more information, please visit the referenced security advisories. More details may also be found by searching for keyword 5013260 within the SuSE...
Gentoo Security Advisory GLSA 200709-13 (rsync)
The remote host is missing updates announced in advisory GLSA 200709-13. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian Security Advisory DSA 1360-1 (rsync)
The remote host is missing an update to rsync announced via advisory DSA 1360-1. OpenVAS Vulnerability Test $Id: deb13601.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1360-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...
SuSE 10 Security Update : rsync (ZYPP Patch Number 3997)
An off by one buffer overflow within the fname function has been fixed. CVE-2007-4091 has been assigned to this issue. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description...
[slackware-security] rsync
New rsync packages are available for Slackware 8.1, 9.0, 9.1, 10.0, 10.1, 10.2, 11.0, 12.0, and -current to fix security issues. More details about the issues may be found here: https://vulners.com/cve/CVE-2007-4091 http://lists.samba.org/archive/rsync-announce/2007/000050.html Here are the detai...
openSUSE 10 Security Update : rsync (rsync-3996)
An off by one buffer overflow within the fname function has been fixed. CVE-2007-4091 has been assigned to this issue. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update rsync-3996. The text...
[SECURITY] [DSA 1360-1] New rsync packages fix arbitrary code execution
------------------------------------------------------------------------ Debian Security Advisory DSA-1360 [email protected] http://www.debian.org/security/ Steve Kemp August 28th, 2007 http://www.debian.org/security/faq - ------------------------------------------------------------------------...
FreeBSD : rsync -- off by one stack overflow (af8e3a0c-5009-11dc-8a43-003048705d5a)
BugTraq reports : The rsync utility is prone to an off-by-one buffer-overflow vulnerability. This issue is due to a failure of the application to properly bounds-check user-supplied input. Successfully exploiting this issue may allow arbitrary code-execution in the context of the affected utility...
[ MDKSA-2007:166 ] - Updated rsync packages fix off-by-one buffer overflow
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDKSA-2007:166 http://www.mandriva.com/security/ Package : rsync Date : August 18, 2007 Affected: 2007.0, 2007.1, Corporate 4.0 Problem Description: Sebastian Krahmer of the SUSE Security Team discovered an off-by-one...
CVE-2007-4091
Multiple off-by-one errors in the sender.c in rsync 2.6.9 might allow remote attackers to execute arbitrary code via directory names that are not properly handled when calling the fname function...
CVE-2007-4091
Multiple off-by-one errors in the sender.c in rsync 2.6.9 might allow remote attackers to execute arbitrary code via directory names that are not properly handled when calling the fname function...
CVE-2007-4091
CVE-2007-4091 concerns rsync 2.6.9 where multiple off-by-one errors in sender.c (in the f_name handling) could allow remote attackers to execute arbitrary code. The description is consistently stated across multiple sources tied to rsync, highlighting the vulnerable component as sender.c and the ...