January 28, 2002

Security update: 'rsync' remote command execution

Author: JT Smith

Posted on LinuxSecurity.com: "
rsync is a powerful tool used for mirroring directory structures across
machines. rsync has been found to contain several signed/unsigned bugs in
its I/O functions which are remotely exploitable. A remote user can crash
the rsync server/client and execute code as the user running the rsync
server or client."

Category:

  • Linux
Click Here!