|
|
RSync Configured Module Path Escaping Vulnerability
|
Bugtraq ID:
|
10247
|
|
Class:
|
Access Validation Error
|
|
CVE:
|
CAN-2004-0426
|
|
Remote:
|
Yes
|
|
Local:
|
No
|
|
Published:
|
Apr 26 2004 12:00AM
|
|
Updated:
|
Apr 26 2004 12:00AM
|
|
Credit:
|
This vulnerability was disclosed by the vendor.
|
|
Vulnerable:
|
rsync rsync 2.6
+
OpenPKG OpenPKG 2.0
rsync rsync 2.5.7
rsync rsync 2.5.6
+
MandrakeSoft Linux Mandrake 9.2
+
MandrakeSoft Linux Mandrake 9.1 ppc
+
MandrakeSoft Linux Mandrake 9.1
+
OpenBSD OpenBSD 3.4
+
OpenBSD OpenBSD 3.3
+
OpenBSD OpenBSD 3.2
+
OpenBSD OpenBSD 3.1
+
OpenBSD OpenBSD 3.0
+
OpenPKG OpenPKG 1.3
+
OpenPKG OpenPKG 1.2
+
OpenPKG OpenPKG Current
+
RedHat Fedora Core1
+
S.u.S.E. Linux Personal 9.0
+
S.u.S.E. Linux Personal 8.2
+
Slackware Linux 9.1
+
Slackware Linux 9.0
rsync rsync 2.5.5
+
Conectiva Linux 9.0
+
Debian Linux 3.0 sparc
+
Debian Linux 3.0 s/390
+
Debian Linux 3.0 ppc
+
Debian Linux 3.0 mipsel
+
Debian Linux 3.0 mips
+
Debian Linux 3.0 m68k
+
Debian Linux 3.0 ia-64
+
Debian Linux 3.0 ia-32
+
Debian Linux 3.0 hppa
+
Debian Linux 3.0 arm
+
Debian Linux 3.0 alpha
+
MandrakeSoft Corporate Server 2.1 x86_64
+
MandrakeSoft Corporate Server 2.1
+
MandrakeSoft Linux Mandrake 9.0
+
S.u.S.E. Linux 8.1
+
Slackware Linux 8.1
rsync rsync 2.5.4
+
Immunix Immunix OS 7.3
+
MandrakeSoft Corporate Server 1.0.1
+
MandrakeSoft Linux Mandrake 8.1 ia64
+
MandrakeSoft Linux Mandrake 8.1
+
MandrakeSoft Linux Mandrake 8.0 ppc
+
MandrakeSoft Linux Mandrake 8.0
+
MandrakeSoft Linux Mandrake 7.2
+
MandrakeSoft Linux Mandrake 7.1
+
MandrakeSoft Multi Network Firewall 2.0
+
MandrakeSoft Single Network Firewall 7.2
rsync rsync 2.5.3
rsync rsync 2.5.2
+
Immunix Immunix OS 7+
rsync rsync 2.5.1
-
FreeBSD FreeBSD 4.5
-
FreeBSD FreeBSD 4.4
-
FreeBSD FreeBSD 4.3
-
FreeBSD FreeBSD 4.2
-
FreeBSD FreeBSD 4.1.1
-
FreeBSD FreeBSD 4.1
rsync rsync 2.5 .0
-
FreeBSD FreeBSD 4.5
-
FreeBSD FreeBSD 4.4
-
FreeBSD FreeBSD 4.3
-
FreeBSD FreeBSD 4.2
-
FreeBSD FreeBSD 4.1.1
-
FreeBSD FreeBSD 4.1
rsync rsync 2.4.8
rsync rsync 2.4.6
+
Conectiva Linux 8.0
+
Conectiva Linux 7.0
+
Conectiva Linux 6.0
+
EnGarde Secure Linux 1.0.1
+
HP Secure OS software for Linux 1.0
+
MandrakeSoft Corporate Server 1.0.1
+
MandrakeSoft Linux Mandrake 8.1 ia64
+
MandrakeSoft Linux Mandrake 8.1
+
MandrakeSoft Linux Mandrake 8.0 ppc
+
MandrakeSoft Linux Mandrake 8.0
+
MandrakeSoft Linux Mandrake 7.2
+
MandrakeSoft Linux Mandrake 7.1
+
MandrakeSoft Single Network Firewall 7.2
+
RedHat Linux 7.2 ia64
+
RedHat Linux 7.2 i386
+
S.u.S.E. Linux 8.0
+
S.u.S.E. Linux 7.3 sparc
+
S.u.S.E. Linux 7.3 ppc
+
S.u.S.E. Linux 7.3 i386
+
S.u.S.E. Linux 7.2 i386
+
S.u.S.E. Linux 7.1 x86
+
S.u.S.E. Linux 7.1 sparc
+
S.u.S.E. Linux 7.1 ppc
+
S.u.S.E. Linux 7.1 alpha
+
Trustix Secure Linux 1.5
+
Trustix Secure Linux 1.2
rsync rsync 2.4.5
rsync rsync 2.4.4
+
RedHat Linux 7.1 ia64
+
RedHat Linux 7.1 i386
+
RedHat Linux 7.1 alpha
+
RedHat Linux 7.0 i386
+
RedHat Linux 7.0 alpha
rsync rsync 2.4.3
+
Caldera OpenLinux 3.1 -IA64
+
Caldera OpenLinux 2.3
+
Caldera OpenLinux Server 3.1
+
Caldera OpenLinux Workstation 3.1
+
Trustix Secure Linux 1.1
rsync rsync 2.4.1
+
RedHat Linux 6.2 sparc
+
RedHat Linux 6.2 i386
+
RedHat Linux 6.2 alpha
+
Trustix Secure Linux 1.0 1
rsync rsync 2.4 .0
rsync rsync 2.3.2 -1.3
rsync rsync 2.3.2 -1.2 sparc
+
Debian Linux 2.2 sparc
rsync rsync 2.3.2 -1.2 PPC
+
Debian Linux 2.2 powerpc
rsync rsync 2.3.2 -1.2 m68k
+
Debian Linux 2.2 68k
rsync rsync 2.3.2 -1.2 intel
+
Debian Linux 2.2 IA-32
rsync rsync 2.3.2 -1.2 ARM
+
Debian Linux 2.2 arm
rsync rsync 2.3.2 -1.2 alpha
+
Debian Linux 2.2 alpha
rsync rsync 2.3.2
+
S.u.S.E. Linux 7.0 sparc
+
S.u.S.E. Linux 7.0 ppc
+
S.u.S.E. Linux 7.0 i386
+
S.u.S.E. Linux 7.0 alpha
+
S.u.S.E. Linux 6.4 ppc
+
S.u.S.E. Linux 6.4 i386
+
S.u.S.E. Linux 6.4 alpha
rsync rsync 2.3.1
+
Caldera OpenLinux eBuilder 3.0
+
Conectiva Linux 5.1
+
Conectiva Linux 5.0
+
Conectiva Linux graficas
+
Conectiva Linux ecommerce
+
SCO eDesktop 2.4
+
SCO eServer 2.3.1
RedHat Linux Advanced Work Station 2.1
RedHat Enterprise Linux WS 3
RedHat Enterprise Linux WS 2.1
RedHat Enterprise Linux ES 3
RedHat Enterprise Linux ES 2.1
RedHat Enterprise Linux AS 3
RedHat Enterprise Linux AS 2.1
RedHat Desktop 3.0
MandrakeSoft Multi Network Firewall 2.0
MandrakeSoft Linux Mandrake 10.0
MandrakeSoft Linux Mandrake 9.2 amd64
MandrakeSoft Linux Mandrake 9.2
MandrakeSoft Linux Mandrake 9.1 ppc
MandrakeSoft Linux Mandrake 9.1
MandrakeSoft Corporate Server 2.1 x86_64
MandrakeSoft Corporate Server 2.1
Debian Linux 3.0 sparc
Debian Linux 3.0 s/390
Debian Linux 3.0 ppc
Debian Linux 3.0 mipsel
Debian Linux 3.0 mips
Debian Linux 3.0 m68k
Debian Linux 3.0 ia-64
Debian Linux 3.0 ia-32
Debian Linux 3.0 hppa
Debian Linux 3.0 arm
Debian Linux 3.0 alpha
Debian Linux 3.0
Conectiva Linux 10.0
Conectiva Linux 9.0
Apple Mac OS X Server 10.3.5
Apple Mac OS X Server 10.3.4
Apple Mac OS X Server 10.2.8
Apple Mac OS X 10.3.5
Apple Mac OS X 10.3.4
Apple Mac OS X 10.2.8
|
|
|
|
Not Vulnerable:
|
rsync rsync 2.6.1
|
|
|
