7.5

CVE-2003-0962

Heap-based buffer overflow in rsync before 2.5.7, when running in server mode, allows remote attackers to execute arbitrary code and possibly escape the chroot jail.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Andrew TridgellRsync Version2.3.1
Andrew TridgellRsync Version2.3.2
Andrew TridgellRsync Version2.4.0
Andrew TridgellRsync Version2.4.1
Andrew TridgellRsync Version2.4.3
Andrew TridgellRsync Version2.4.4
Andrew TridgellRsync Version2.4.5
Andrew TridgellRsync Version2.4.6
Andrew TridgellRsync Version2.4.8
Andrew TridgellRsync Version2.5.0
Andrew TridgellRsync Version2.5.1
Andrew TridgellRsync Version2.5.2
Andrew TridgellRsync Version2.5.3
Andrew TridgellRsync Version2.5.4
Andrew TridgellRsync Version2.5.5
Andrew TridgellRsync Version2.5.6
RedhatRsync Version2.4.6-2 Editioni386
RedhatRsync Version2.4.6-5 Editioni386
RedhatRsync Version2.4.6-5 Editionia64
RedhatRsync Version2.5.4-2 Editioni386
RedhatRsync Version2.5.5-1 Editioni386
RedhatRsync Version2.5.5-4 Editioni386
EngardelinuxSecure Community Version1.0.1
EngardelinuxSecure Linux Version1.1 Editionprofessional
EngardelinuxSecure Linux Version1.2 Editionprofessional
EngardelinuxSecure Linux Version1.5 Editionprofessional
SlackwareSlackware Linux Version8.1
SlackwareSlackware Linux Version9.0
SlackwareSlackware Linux Version9.1
SlackwareSlackware Linux Versioncurrent
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 21.16% 0.973
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.5 10 6.4
AV:N/AC:L/Au:N/C:P/I:P/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
ftp://patches.sgi.com/support/free/security/advisories/20031202-01-U
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000794
http://marc.info/?l=bugtraq&m=107055681311602&w=2
http://marc.info/?l=bugtraq&m=107055684711629&w=2
http://marc.info/?l=bugtraq&m=107055702911867&w=2
http://marc.info/?l=bugtraq&m=107056923528423&w=2
http://secunia.com/advisories/10353
http://secunia.com/advisories/10354
http://secunia.com/advisories/10355
http://secunia.com/advisories/10356
http://secunia.com/advisories/10357
http://secunia.com/advisories/10358
http://secunia.com/advisories/10359
http://secunia.com/advisories/10360
http://secunia.com/advisories/10361
http://secunia.com/advisories/10362
http://secunia.com/advisories/10363
http://secunia.com/advisories/10364
http://secunia.com/advisories/10378
http://secunia.com/advisories/10474
http://www.kb.cert.org/vuls/id/325603
US Government Resource
http://www.mandriva.com/security/advisories?name=MDKSA-2003:111
http://www.osvdb.org/2898
http://www.redhat.com/support/errata/RHSA-2003-398.html
Patch
Vendor Advisory
http://www.securityfocus.com/bid/9153
Patch
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/13899
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9415