Press CTRL-D to bookmark us
Welcome Guest Login / Register / Members
Search in  
Top Submit newsSubscribe
Communication | Computer Crime | Digital Audio, Video, Photo | General News | Hardware | Internet | Mobile | PDA | Security | Software | Vulnerability |
Previous articleBack to news listNext article
 

 Sponsored links

Want to become one of our authors and see your work published on ALLSeek.iNFO ?
 
 Rsync Heap Overflow in Daemon Mode Lets Remote Users Execute Arbitrary Code
Categorie: Vulnerability
Posted: 2003-12-06 by ReCall
Views: 452
Source: Click here
 		Current Rating: Not rated
Poor Best
 Details
Description: A vulnerability was reported in rsync. A remote user can execute arbitrary code on the target system.

It is reported that a remote user can connect to a target server running rsync on TCP port 873 and send specially crafted data to execute arbitrary code. The code will run with the privileges of the rsync daemon.

Only systems that are running rsync in daemon mode are reportedly affected.

: Impact: A remote user can execute arbitrary code with the privileges of the rsync daemon.

Solution: The vendor has released a fixed version (2.5.7) and also a patch for 2.5.6, available at:



http://rsync.samba.org/
http://samba.org/ftp/rsync/rsync-2.5.7.tar.gz
http://samba.org/ftp/rsync/rsync-2.5.6-2.5.7.diff.gz
 
Syndication
Permalink Email this

The URI to TrackBack this entry is:
http://allseek.info/news/trackback.php?id=589

User comments (post your comments here)

Only registerd members can post comments and articles
 
Previous articleBack to news listNext article
 


InterJOB.su
Bookmark us | Set As Homepage | Advertising | Contact Us | Recomend us | Link us | Links | Terms

SpyLOG Page Rank Checker
LAST QUERIES