Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntuUbuntuUSN-2879-1
HistoryJan 21, 2016 - 12:00 a.m.

rsync vulnerability

2016-01-2100:00:00
ubuntu.com
40

CVSS2

6.4

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:P/A:P

AI Score

8.6

Confidence

High

EPSS

0.021

Percentile

89.3%

JSON

Releases

  • Ubuntu 15.10
  • Ubuntu 15.04
  • Ubuntu 14.04 ESM
  • Ubuntu 12.04

Packages

  • rsync - fast, versatile, remote (and local) file-copying tool

Details

It was discovered that rsync incorrectly handled invalid filenames. A
malicious server could use this issue to write files outside of the
intended destination directory.

OSVersionArchitecturePackageVersionFilename
Ubuntu15.10noarchrsync< 3.1.1-3ubuntu0.15.10.1UNKNOWN
Ubuntu15.04noarchrsync< 3.1.1-3ubuntu0.15.04.1UNKNOWN
Ubuntu14.04noarchrsync< 3.1.0-2ubuntu0.2UNKNOWN
Ubuntu12.04noarchrsync< 3.0.9-1ubuntu1.1UNKNOWN

Related

cve 1
nessus 16
ubuntucve 1
openvas 7
cvelist 1
nvd 1
debiancve 1
prion 1
gentoo 1
osv 1
apple 10
cve
cve
CVE-2014-9512
2015-02-12 16:59:01
nessus
nessus
openSUSE Security Update : rsync (openSUSE-2016-803)
2016-06-29 00:00:00
EulerOS 2.0 SP3 : rsync (EulerOS-SA-2021-1844)
2021-04-30 00:00:00
openSUSE Security Update : rsync (openSUSE-2015-124)
2015-02-11 00:00:00
ubuntucve
ubuntucve
CVE-2014-9512
2015-02-12 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2016:2151-1)
2021-04-19 00:00:00
SUSE: Security Advisory (SUSE-SU-2016:1866-1)
2021-06-09 00:00:00
Huawei EulerOS: Security Advisory for rsync (EulerOS-SA-2021-1844)
2021-05-03 00:00:00
cvelist
cvelist
CVE-2014-9512
2015-02-12 16:00:00
nvd
nvd
CVE-2014-9512
2015-02-12 16:59:01
debiancve
debiancve
CVE-2014-9512
2015-02-12 16:59:01
prion
prion
Path traversal
2015-02-12 16:59:00
gentoo
gentoo
rsync: Multiple vulnerabilities
2016-05-30 00:00:00
osv
osv
rsync-3.1.2-1.5 on GA media
2024-06-15 00:00:00
apple
apple
About the security content of tvOS 13.4.5 - Apple Support
2020-09-21 04:33:14
About the security content of watchOS 6.2.5 - Apple Support
2020-09-21 04:34:00
About the security content of tvOS 13.4.5
2020-05-20 00:00:00

CVSS2

6.4

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:P/A:P

AI Score

8.6

Confidence

High

EPSS

0.021

Percentile

89.3%

JSON
Related for USN-2879-1
cve1nessus16ubuntucve1openvas7cvelist1nvd1debiancve1prion1gentoo1osv1apple10