MacOSXLabs RsyncX 2.1 - Local Privilege Escalation Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/11211/info It is reported that RsyncX is prone to a local privilege escalation vulnerability. RsyncX is installed setuid root and setgid wheel. It is reported that RsyncX drops root privileges properly but fails to drop...

MacOSXLabs RsyncX 2.1 Insecure Temporary File Creation Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/11212/info RsyncX is reported to contain an insecure temporary file creation vulnerability. The result of this is that temporary files created by the application may use predictable filenames. A local attacker may exploit...

rsynxOSX.txt

Product: RsyncX is a frontend for rsync running on OS X, with additional features such as crontab editing. http://www.macosxlabs.org/rsyncx/rsyncx.html Problems: 1 RsyncX is installed setuid root and setgid wheel. Upon execution, the program drops root privileges only via seteuidgetuid . However ...

RsyncX vulnerabilities

Product: RsyncX is a frontend for rsync running on OS X, with additional features such as crontab editing. http://www.macosxlabs.org/rsyncx/rsyncx.html Problems: 1 RsyncX is installed setuid root and setgid wheel. Upon execution, the program drops root privileges only via seteuidgetuid . However ...

RSyncX privelege escalation

Elevated privileges are not fully dropped...

MacOSXLabs RsyncX 2.1 - Insecure Temporary File Creation

source: https://www.securityfocus.com/bid/11212/info RsyncX is reported to contain an insecure temporary file creation vulnerability. The result of this is that temporary files created by the application may use predictable filenames. A local attacker may exploit this vulnerability to execute...

MacOSXLabs RsyncX 2.1 - Local Privilege Escalation

MacOSXLabs RsyncX 2.1 - Local Privilege Escalation source: https://www.securityfocus.com/bid/11211/info It is reported that RsyncX is prone to a local privilege escalation vulnerability. RsyncX is installed setuid root and setgid wheel. It is reported that RsyncX drops root privileges properly bu...

MacOSXLabs RsyncX 2.1 - Local Privilege Escalation

source: https://www.securityfocus.com/bid/11211/info It is reported that RsyncX is prone to a local privilege escalation vulnerability. RsyncX is installed setuid root and setgid wheel. It is reported that RsyncX drops root privileges properly but fails to drop setgid wheel privileges before...

MacOSXLabs RsyncX 2.1 - Insecure Temporary File Creation

MacOSXLabs RsyncX 2.1 - Insecure Temporary File Creation source: https://www.securityfocus.com/bid/11212/info RsyncX is reported to contain an insecure temporary file creation vulnerability. The result of this is that temporary files created by the application may use predictable filenames. A loc...