CVE-2007-6199

Published: 01 December 2007

rsync before 3.0.0pre6, when running a writable rsync daemon that is not using chroot, allows remote attackers to access restricted files via unknown vectors that cause rsync to create a symlink that points outside of the module's hierarchy.

Priority

Low

Status

Package Release Status
rsync
Launchpad, Ubuntu, Debian
Upstream
Released (2.6.9-5.1)
Patches:
Upstream: http://rsync.samba.org/ftp/rsync/munge-symlinks-2.6.9.diff

Notes

AuthorNote
jdstrand
lowering priority as it is only for rsyncd while not running in
chroot.  This is a not-recommended, non-standard configuration. Above patch
adds a configuration option to make this configuration 'safer'.

References

Bugs