← Back

CVE-2004-0792

nvd nist
Published: Oct 20, 2004Modified: Apr 16, 2026

JSON object

Loading...
6.4
Vector
AV:N/AC:L/Au:N/C:P/I:P/A:N
Exploitability: 10.0 / Impact: 4.9
Source: NVD

Description

Directory traversal vulnerability in the sanitize_path function in util.c for rsync 2.6.2 and earlier, when chroot is disabled, allows attackers to read or write certain files.

Affected (27)

Andrew Tridgell
1 product
Rsync
Configuration A
27 vulnerable
Vulnerable SoftwareAffected Versions
Andrew Tridgell
Rsync
Version 2.3.1
Rsync
Version 2.3.2
Rsync
Version 2.3.2_1.2
Rsync
Version 2.3.2_1.2
Rsync
Version 2.3.2_1.2
Rsync
Version 2.3.2_1.2
Rsync
Version 2.3.2_1.2
Rsync
Version 2.3.2_1.2
Rsync
Version 2.3.2_1.3
Rsync
Version 2.4.0
Rsync
Version 2.4.1
Rsync
Version 2.4.3
Rsync
Version 2.4.4
Rsync
Version 2.4.5
Rsync
Version 2.4.6
Rsync
Version 2.4.8
Rsync
Version 2.5.0
Rsync
Version 2.5.1
Rsync
Version 2.5.2
Rsync
Version 2.5.3
Rsync
Version 2.5.4
Rsync
Version 2.5.5
Rsync
Version 2.5.6
Rsync
Version 2.5.7
Rsync
Version 2.6.1
Rsync
Version 2.6.2
Rsync
Version 2.6

References (18)

Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
PatchVendor Advisory
Source: cve@mitre.org
PatchVendor Advisory
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.