CVE-2003-0962

EPSS 44.3%

rsync - heap overflow

Published: 12/15/2003Modified: 4/28/2026

Also known as:DEBIAN-CVE-2003-0962

Description

Heap-based buffer overflow in rsync before 2.5.7, when running in server mode, allows remote attackers to execute arbitrary code and possibly escape the chroot jail.

Affected packages (2)

Debian/rsyncfrom 0, < 2.5.6-1.1
Debian/rsyncfrom 0, < 2.5.5-0.2

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2003-0962