This CPE summary could be partial or incomplete. Please contact us for a detailed listing.
Summary
| Detail | |||
|---|---|---|---|
| Vendor | Rsync | First view | 2007-12-01 |
| Product | Rsync | Last view | 2007-12-01 |
| Version | 2.3.2_1.2m68k | Type | Application |
| Update | * | ||
| Edition | * | ||
| Language | * | ||
| Sofware Edition | * | ||
| Target Software | * | ||
| Target Hardware | * | ||
| Other | * | ||
| CPE Product | cpe:2.3:a:rsync:rsync | ||
Activity : Overall
Related : CVE
| Date | Alert | Description | |
|---|---|---|---|
| 10 | 2007-12-01 | CVE-2007-6200 | Unspecified vulnerability in rsync before 3.0.0pre6, when running a writable rsync daemon, allows remote attackers to bypass exclude, exclude_from, and filter and read or write hidden files via (1) symlink, (2) partial-dir, (3) backup-dir, and unspecified (4) dest options. |
| 9.3 | 2007-12-01 | CVE-2007-6199 | rsync before 3.0.0pre6, when running a writable rsync daemon that is not using chroot, allows remote attackers to access restricted files via unknown vectors that cause rsync to create a symlink that points outside of the module's hierarchy. |
CWE : Common Weakness Enumeration
| % | id | Name |
|---|---|---|
| 50% (1) | CWE-264 | Permissions, Privileges, and Access Controls |
| 50% (1) | CWE-16 | Configuration |
Open Source Vulnerability Database (OSVDB)
| id | Description |
|---|---|
| 39594 | rsync Unspecified Restricted File Remote Access |
| 39593 | rsync Unspecified Remote Restriction Bypass |
OpenVAS Exploits
| id | Description |
|---|---|
| 2012-07-30 | Name : CentOS Update for rsync CESA-2011:0999 centos5 x86_64 File : nvt/gb_CESA-2011_0999_rsync_centos5_x86_64.nasl |
| 2011-09-23 | Name : CentOS Update for rsync CESA-2011:0999 centos5 i386 File : nvt/gb_CESA-2011_0999_rsync_centos5_i386.nasl |
| 2011-07-22 | Name : RedHat Update for rsync RHSA-2011:0999-01 File : nvt/gb_RHSA-2011_0999-01_rsync.nasl |
| 2010-05-12 | Name : Mac OS X Security Update 2008-005 File : nvt/macosx_secupd_2008-005.nasl |
| 2009-11-17 | Name : Mac OS X Version File : nvt/macosx_version.nasl |
| 2009-10-13 | Name : SLES10: Security update for rsync File : nvt/sles10_rsync.nasl |
| 2009-10-10 | Name : SLES9: Security update for rsync File : nvt/sles9p5012702.nasl |
| 2009-04-09 | Name : Mandriva Update for rsync MDVSA-2008:011 (rsync) File : nvt/gb_mandriva_MDVSA_2008_011.nasl |
Nessus® Vulnerability Scanner
| id | Description |
|---|---|
| 2015-04-23 | Name: The remote device is missing a vendor-supplied security patch. File: f5_bigip_SOL15549.nasl - Type: ACT_GATHER_INFO |
| 2014-11-17 | Name: The remote Red Hat host is missing a security update. File: redhat-RHSA-2011-1090.nasl - Type: ACT_GATHER_INFO |
| 2012-08-01 | Name: The remote Scientific Linux host is missing one or more security updates. File: sl_20110721_rsync_on_SL5_x.nasl - Type: ACT_GATHER_INFO |
| 2011-09-23 | Name: The remote CentOS host is missing a security update. File: centos_RHSA-2011-0999.nasl - Type: ACT_GATHER_INFO |
| 2011-07-22 | Name: The remote Red Hat host is missing a security update. File: redhat-RHSA-2011-0999.nasl - Type: ACT_GATHER_INFO |
| 2009-09-24 | Name: The remote SuSE 9 host is missing a security-related patch. File: suse9_12038.nasl - Type: ACT_GATHER_INFO |
| 2009-04-23 | Name: The remote Mandriva Linux host is missing a security update. File: mandriva_MDVSA-2008-011.nasl - Type: ACT_GATHER_INFO |
| 2008-08-01 | Name: The remote host is missing a Mac OS X update that fixes various security issues. File: macosx_SecUpd2008-005.nasl - Type: ACT_GATHER_INFO |
| 2007-12-24 | Name: The remote openSUSE host is missing a security update. File: suse_rsync-4793.nasl - Type: ACT_GATHER_INFO |
| 2007-12-24 | Name: The remote SuSE 10 host is missing a security-related patch. File: suse_rsync-4798.nasl - Type: ACT_GATHER_INFO |
