 |
Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | ||
| Test ID: | 1.3.6.1.4.1.25623.1.0.53383 |
| Category: | Debian Local Security Checks |
| Title: | Debian Security Advisory DSA 404-1 (rsync) |
| Summary: | The remote host is missing an update to rsync;announced via advisory DSA 404-1. |
| Description: | Summary: The remote host is missing an update to rsync announced via advisory DSA 404-1. Vulnerability Insight: The rsync team has received evidence that a vulnerability in all versions of rsync prior to 2.5.7, a fast remote file copy program, was recently used in combination with a Linux kernel vulnerability to compromise the security of a public rsync server. While this heap overflow vulnerability could not be used by itself to obtain root access on an rsync server, it could be used in combination with the recently announced do_brk() vulnerability in the Linux kernel to produce a full remote compromise. Please note that this vulnerability only affects the use of rsync as an rsync server. To see if you are running a rsync server you should use the command netstat -a -n to see if you are listening on TCP port 873. If you are not listening on TCP port 873 then you are not running an rsync server. For the stable distribution (woody) this problem has been fixed in version 2.5.5-0.2. For the unstable distribution (sid) this problem has been fixed in version 2.5.6-1.1. Solution: We recommend that you upgrade your rsync package immediately if you CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P |
| Cross-Ref: |
Common Vulnerability Exposure (CVE) ID: CVE-2003-0962 BugTraq ID: 9153 http://www.securityfocus.com/bid/9153 Bugtraq: 20031204 GLSA: exploitable heap overflow in rsync (200312-03) (Google Search) http://marc.info/?l=bugtraq&m=107056923528423&w=2 Bugtraq: 20031204 [OpenPKG-SA-2003.051] OpenPKG Security Advisory (rsync) (Google Search) http://marc.info/?l=bugtraq&m=107055702911867&w=2 Bugtraq: 20031204 rsync security advisory (fwd) (Google Search) http://marc.info/?l=bugtraq&m=107055681311602&w=2 CERT/CC vulnerability note: VU#325603 http://www.kb.cert.org/vuls/id/325603 Conectiva Linux advisory: CLA-2003:794 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000794 Debian Security Information: DSA-404 (Google Search) En Garde Linux Advisory: ESA-20031204-032 Immunix Linux Advisory: IMNX-2003-73-001-01 http://www.mandriva.com/security/advisories?name=MDKSA-2003:111 http://www.osvdb.org/2898 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9415 http://www.redhat.com/support/errata/RHSA-2003-398.html http://secunia.com/advisories/10353 http://secunia.com/advisories/10354 http://secunia.com/advisories/10355 http://secunia.com/advisories/10356 http://secunia.com/advisories/10357 http://secunia.com/advisories/10358 http://secunia.com/advisories/10359 http://secunia.com/advisories/10360 http://secunia.com/advisories/10361 http://secunia.com/advisories/10362 http://secunia.com/advisories/10363 http://secunia.com/advisories/10364 http://secunia.com/advisories/10378 http://secunia.com/advisories/10474 SGI Security Advisory: 20031202-01-U ftp://patches.sgi.com/support/free/security/advisories/20031202-01-U SuSE Security Announcement: SuSE-SA:2003:050 (Google Search) http://marc.info/?l=bugtraq&m=107055684711629&w=2 XForce ISS Database: linux-rsync-heap-overflow(13899) https://exchange.xforce.ibmcloud.com/vulnerabilities/13899 |
| Copyright | Copyright (C) 2008 E-Soft Inc. |
| This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below. |