CVE-2007-6199

Published: Dec 1, 2007

Modified: Aug 7, 2024

PUBLISHED

Description

rsync before 3.0.0pre6, when running a writable rsync daemon that is not using chroot, allows remote attackers to access restricted files via unknown vectors that cause rsync to create a symlink that points outside of the module's hierarchy.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

28412

third-party-advisory

x_refsource_SECUNIA

http://support.f5.com/kb/en-us/solutions/public/15000/500/sol15549.html

x_refsource_CONFIRM

ADV-2007-4057

vdb-entry

x_refsource_VUPEN

APPLE-SA-2008-07-31

vendor-advisory

x_refsource_APPLE

ADV-2008-2268

vdb-entry

x_refsource_VUPEN

27853

third-party-advisory

x_refsource_SECUNIA

20080212 FLEA-2008-0004-1 rsync

mailing-list

x_refsource_BUGTRAQ

27863

third-party-advisory

x_refsource_SECUNIA

http://wiki.rpath.com/wiki/Advisories:rPSA-2007-0257

x_refsource_CONFIRM

http://rsync.samba.org/security.html#s3_0_0

x_refsource_CONFIRM

61005

third-party-advisory

x_refsource_SECUNIA

28457

third-party-advisory

x_refsource_SECUNIA

MDVSA-2008:011

vendor-advisory

x_refsource_MANDRIVA

31326

third-party-advisory

x_refsource_SECUNIA

26638

vdb-entry

x_refsource_BID

1019012

vdb-entry

x_refsource_SECTRACK

SUSE-SR:2008:001

vendor-advisory

x_refsource_SUSE

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2007-6199

Description

Affected Products

References