Rsync Buffer Overflow in Extended Attribute Support Code Lets Remote Users Execute Arbitrary Code
|
|
SecurityTracker Alert ID: 1019835
|
|
SecurityTracker URL: http://securitytracker.com/id?1019835
|
|
CVE Reference: CVE-2008-1720
(Links to External Site)
|
Date: Apr 14 2008
|
Impact: Execution of arbitrary code via network, User access via network
|
Fix Available: Yes
Vendor Confirmed: Yes
|
Version(s): 2.6.9 - 3.0.1
|
Description: A vulnerability was reported in Rsync. A remote user can execute arbitrary code on the target system.
A remote user can send specially crafted access control list data to trigger a buffer overflow in the extended attribute support
code and execute arbitrary code on the target system. The code will run with the privileges of the target service.
Sebastian
Krahmer reported this vulnerability.
|
Impact: A remote user can execute arbitrary code on the target system.
|
Solution: The vendor has issued a fixed version (3.0.2).
A patch is also available at:
http://rsync.samba.org/ftp/rsync/security/rsync-3.0.1-xattr-alloc.diff
|
Vendor URL: rsync.samba.org/ (Links to External Site)
|
Cause: Boundary error
|
Underlying OS: Linux (Any), UNIX (Any)
|
|
Message History:
None.
|
Source Message Contents
|
Date: Mon, 14 Apr 2008 01:03:58 -0400
Subject: Rsync
|
CVE-2008-1720
> Xattr security fix in 3.0.2
|
|
