Lucene search
K

9 matches found

Tenable Nessus
Tenable Nessus
added 2014/06/13 12:0 a.m.27 views

openSUSE Security Update : Rsync (openSUSE-SU-2014:0595-1)

Rsync was updated to fix a denial of service attack that could be used by remote attackers without authentification CVE-2014-2855. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...

7.8CVSS5.4AI score0.04086EPSS
Exploits1References3
securityvulns
securityvulns
added 2014/05/04 12:0 a.m.60 views

[USN-2171-1] rsync vulnerability

========================================================================== Ubuntu Security Notice USN-2171-1 April 23, 2014 rsync vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubunt...

7.8CVSS1AI score0.04086EPSS
Exploits1
OSV
OSV
added 2014/04/23 3:55 p.m.9 views

CVE-2014-2855

The checksecret function in authenticate.c in rsync 3.1.0 and earlier allows remote attackers to cause a denial of service infinite loop and CPU consumption via a user name which does not exist in the secrets file...

6.2AI score
Exploits0References11
OSV
OSV
added 2014/04/23 3:55 p.m.0 views

BELL-CVE-2014-2855 CVE-2014-2855 does not affect BellSoft software

Bulletin has no description...

7.8CVSS5.8AI score0.04086EPSS
Exploits1References1
Debian CVE
Debian CVE
added 2014/04/23 2:0 p.m.17 views

CVE-2014-2855

The checksecret function in authenticate.c in rsync 3.1.0 and earlier allows remote attackers to cause a denial of service infinite loop and CPU consumption via a user name which does not exist in the secrets file...

7.8CVSS6.1AI score0.04086EPSS
Exploits1
Cvelist
Cvelist
added 2014/04/23 2:0 p.m.26 views

CVE-2014-2855

The checksecret function in authenticate.c in rsync 3.1.0 and earlier allows remote attackers to cause a denial of service infinite loop and CPU consumption via a user name which does not exist in the secrets file...

6.1AI score0.04086EPSS
Exploits1References11
CVE
CVE
added 2014/04/23 2:0 p.m.63 views

CVE-2014-2855

CVE-2014-2855 affects rsync up to version 3.1.0. The vulnerability resides in check_secret() in authenticate.c, where a username not present in the secrets file can trigger an infinite loop and CPU denial of service. Multiple advisories confirm the issue and reference the affected rsync, with pat...

7.8CVSS6.3AI score0.04086EPSS
Exploits1References11Affected Software1
Tenable Nessus
Tenable Nessus
added 2014/04/21 12:0 a.m.26 views

Fedora 20 : rsync-3.1.0-3.fc20 (2014-5315)

This update fixes CVE-2014-2855 and temporary reverts compilation with system provided zlibBZ1043965. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as...

7.8CVSS5.3AI score0.04086EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2014/04/17 12:0 a.m.18 views

CVE-2014-2855

The checksecret function in authenticate.c in rsync 3.1.0 and earlier allows remote attackers to cause a denial of service infinite loop and CPU consumption via a user name which does not exist in the secrets file...

7.8CVSS5.9AI score0.04086EPSS
Exploits1References2
Rows per page
Query Builder