K15548: Rsync sender.c vulnerability CVE-2007-4091

Security Advisory Description Multiple off-by-one errors in the sender.c in rsync 2.6.9 might allow remote attackers to execute arbitrary code via directory names that are not properly handled when calling the fname function. CVE-2007-4091 Impact There is no impact; F5 products are not affected b...

SOL15548 - Rsync sender.c vulnerability CVE-2007-4091

Recommended Action None Supplemental Information SOL9970: Subscribing to email notifications regarding F5 products SOL9957: Creating a custom RSS feed to view new and updated documents SOL4602: Overview of the F5 security vulnerability response policy SOL4918: Overview of the F5 critical issue...

SLES9: Security update for rsync

The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: rsync For more information, please visit the referenced security advisories. More details may also be found by searching for keyword 5013260 within the SuSE...

SLES9: Security update for rsync

The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: rsync For more information, please visit the referenced security advisories. More details may also be found by searching for keyword 5013260 within the SuSE...

Gentoo Security Advisory GLSA 200709-13 (rsync)

The remote host is missing updates announced in advisory GLSA 200709-13. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian Security Advisory DSA 1360-1 (rsync)

The remote host is missing an update to rsync announced via advisory DSA 1360-1. OpenVAS Vulnerability Test $Id: deb13601.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1360-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

SuSE 10 Security Update : rsync (ZYPP Patch Number 3997)

An off by one buffer overflow within the fname function has been fixed. CVE-2007-4091 has been assigned to this issue. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description...

[slackware-security] rsync

New rsync packages are available for Slackware 8.1, 9.0, 9.1, 10.0, 10.1, 10.2, 11.0, 12.0, and -current to fix security issues. More details about the issues may be found here: https://vulners.com/cve/CVE-2007-4091 http://lists.samba.org/archive/rsync-announce/2007/000050.html Here are the detai...

openSUSE 10 Security Update : rsync (rsync-3996)

An off by one buffer overflow within the fname function has been fixed. CVE-2007-4091 has been assigned to this issue. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update rsync-3996. The text...

[SECURITY] [DSA 1360-1] New rsync packages fix arbitrary code execution

------------------------------------------------------------------------ Debian Security Advisory DSA-1360 [email protected] http://www.debian.org/security/ Steve Kemp August 28th, 2007 http://www.debian.org/security/faq - ------------------------------------------------------------------------...

FreeBSD : rsync -- off by one stack overflow (af8e3a0c-5009-11dc-8a43-003048705d5a)

BugTraq reports : The rsync utility is prone to an off-by-one buffer-overflow vulnerability. This issue is due to a failure of the application to properly bounds-check user-supplied input. Successfully exploiting this issue may allow arbitrary code-execution in the context of the affected utility...

[ MDKSA-2007:166 ] - Updated rsync packages fix off-by-one buffer overflow

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDKSA-2007:166 http://www.mandriva.com/security/ Package : rsync Date : August 18, 2007 Affected: 2007.0, 2007.1, Corporate 4.0 Problem Description: Sebastian Krahmer of the SUSE Security Team discovered an off-by-one...

CVE-2007-4091

Multiple off-by-one errors in the sender.c in rsync 2.6.9 might allow remote attackers to execute arbitrary code via directory names that are not properly handled when calling the fname function...

CVE-2007-4091

CVE-2007-4091 concerns rsync 2.6.9 where multiple off-by-one errors in sender.c (in the f_name handling) could allow remote attackers to execute arbitrary code. The description is consistently stated across multiple sources tied to rsync, highlighting the vulnerable component as sender.c and the ...

CVE-2007-4091

Multiple off-by-one errors in the sender.c in rsync 2.6.9 might allow remote attackers to execute arbitrary code via directory names that are not properly handled when calling the fname function...