Back to search
CVE-2007-4091
Published: Aug 16, 2007
Modified: Aug 7, 2024
PUBLISHED
Description
Multiple off-by-one errors in the sender.c in rsync 2.6.9 might allow remote attackers to execute arbitrary code via directory names that are not properly handled when calling the f_name function.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
27896
third-party-advisory
x_refsource_SECUNIA
GLSA-200709-13
vendor-advisory
x_refsource_GENTOO
26822
third-party-advisory
x_refsource_SECUNIA
rsync-fname-bo(36072)
vdb-entry
x_refsource_XF
USN-500-1
vendor-advisory
x_refsource_UBUNTU
26493
third-party-advisory
x_refsource_SECUNIA
61039
third-party-advisory
x_refsource_SECUNIA
26634
third-party-advisory
x_refsource_SECUNIA
SUSE-SR:2007:017
vendor-advisory
x_refsource_SUSE
26543
third-party-advisory
x_refsource_SECUNIA
https://issues.rpath.com/browse/RPL-1647
x_refsource_CONFIRM
20070823 FLEA-2007-0047-1 rsync
mailing-list
x_refsource_BUGTRAQ
DSA-1360
vendor-advisory
x_refsource_DEBIAN
http://article.gmane.org/gmane.linux.debian.devel.bugs.general/291908
x_refsource_CONFIRM
SSA:2007-335-01
vendor-advisory
x_refsource_SLACKWARE
2007-0026
vendor-advisory
x_refsource_TRUSTIX
http://c-skills.blogspot.com/2007/08/cve-2007-4091.html
x_refsource_CONFIRM
http://support.f5.com/kb/en-us/solutions/public/15000/500/sol15548.html
x_refsource_CONFIRM
25336
vdb-entry
x_refsource_BID
26537
third-party-advisory
x_refsource_SECUNIA
ADV-2007-2915
vdb-entry
x_refsource_VUPEN
26518
third-party-advisory
x_refsource_SECUNIA
26548
third-party-advisory
x_refsource_SECUNIA
26911
third-party-advisory
x_refsource_SECUNIA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now