CVE-2004-0792

EPSS 0.78%

rsync - unauthorised directory traversal and file access

發布日:2004/10/20修改日:2026/4/28

描述

Directory traversal vulnerability in the sanitize_path function in util.c for rsync 2.6.2 and earlier, when chroot is disabled, allows attackers to read or write certain files.

受影響套件(2)

Debian/rsyncfrom 0, < 2.6.2-3
Debian/rsyncfrom 0, < 2.5.5-0.6

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2004-0792