16 matches found
Linux Distros Unpatched Vulnerability : CVE-2007-6200
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Unspecified vulnerability in rsync before 3.0.0pre6, when running a writable rsync daemon, allows remote attackers to bypass exclude, excludefrom, and filter an...
RHEL 3 : rsync (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 3 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - rsync excluded content access restrictions bypass via symlinks CVE-2007-6200 Note that Nessus has not tested for th...
Oracle Linux 5 : rsync (ELSA-2011-0999)
The remote Oracle Linux 5 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2011-0999 advisory. - Add upstream patch to fix CVE-2011-1097 - Incremental file-list corruption due to temporary fileextracnt increments Resolves: 688923 Tenable has extracted the...
RHEL 5 : rhev-hypervisor (RHSA-2011:1090)
An updated rhev-hypervisor package that fixes one security issue and several bugs is now available. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...
Scientific Linux Security Update : rsync on SL5.x i386/x86_64
rsync is a program for synchronizing files over a network. A flaw was found in the way the rsync daemon handled the 'filter', 'exclude', and 'exclude from' options, used for hiding files and preventing access to them from rsync clients. A remote attacker could use this flaw to bypass those...
CentOS Update for rsync CESA-2011:0999 centos5 x86_64
The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
CentOS Update for rsync CESA-2011:0999 centos5 i386
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Mac OS X Security Update 2008-005
The remote host is missing Security Update 2008-005. One or more of the following components are affected: Open Scripting Architecture BIND CarbonCore CoreGraphics Data Detectors Engine Disk Utility OpenLDAP OpenSSL PHP QuickLook rsync OpenVAS Vulnerability Test Mac OS X Security Update 2008-005...
SLES10: Security update for rsync
The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: rsync More details may also be found by searching for the SuSE Enterprise Server 10 patch database located at http://download.novell.com/patch/finder/ VID...
SLES10: Security update for rsync
The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: rsync More details may also be found by searching for the SuSE Enterprise Server 10 patch database linked in the references. SPDX-FileCopyrightText: 2009...
SLES9: Security update for rsync
The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: rsync For more information, please visit the referenced security advisories. More details may also be found by searching for keyword 5012702 within the SuSE...
SLES9: Security update for rsync
The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: rsync For more information, please visit the referenced security advisories. More details may also be found by searching for keyword 5012702 within the SuSE...
Mandriva Linux Security Advisory : rsync (MDVSA-2008:011)
rsync before 3.0.0pre6, when running a writable rsync daemon that is not using chroot, allows remote attackers to access restricted files via unknown vectors that cause rsync to create a symlink that points outside of the module's hierarchy. CVE-2007-6199 Unspecified vulnerability in rsync before...
Mandriva Update for rsync MDVSA-2008:011 (rsync)
Check for the Version of rsync OpenVAS Vulnerability Test Mandriva Update for rsync MDVSA-2008:011 rsync Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...
rPSA-2007-0257-1 rsync
rPath Security Advisory: 2007-0257-1 Published: 2007-12-04 Products: rPath Linux 1 Rating: Minor Exposure Level Classification: Remote Deterministic Unauthorized Access Updated Versions: rsync=conary.rpath.com@rpl:1/2.6.8-1.2-1 rPath Issue Tracking System: https://issues.rpath.com/browse/RPL-1989...
CVE-2007-6200
CVE-2007-6200 affects rsync prior to 3.0.0pre6. When running a writable rsync daemon, it allows remote attackers to bypass exclude, exclude_from, and filter options and read or write hidden files via (1) symlink, (2) partial-dir, (3) backup-dir, and (4) dest options. The initial documents do not ...