Your submission was sent successfully! Close

CVE-2004-0792

Published: 20 October 2004

Directory traversal vulnerability in the sanitize_path function in util.c for rsync 2.6.2 and earlier, when chroot is disabled, allows attackers to read or write certain files.

Priority

Unknown

Status

Package Release Status
rsync
Launchpad, Ubuntu, Debian
dapper
Released (2.6.6-1ubuntu2.1)
edgy
Released (2.6.8-2ubuntu3.1)
feisty
Released (2.6.9-3ubuntu1.1)
gutsy
Released (2.6.9-5ubuntu1)
upstream Needs triage