CVE-2007-6199
published 2007-12-01CVE-2007-6199: rsync before 3.0.0pre6, when running a writable rsync daemon that is not using chroot, allows remote attackers to access restricted files via unknown vectors…
critical9.3CVSS 3.1
AVNACMAuNCCICAC
rsync before 3.0.0pre6, when running a writable rsync daemon that is not using chroot, allows remote attackers to access restricted files via unknown vectors that cause rsync to create a symlink that points outside of the module's hierarchy.
Affected
37 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | rsync | < rsync 2.6.9-6 (bookworm) | rsync 2.6.9-6 (bookworm) |
| rsync | rsync | — | — |
| rsync | rsync | — | — |
| rsync | rsync | — | — |
| rsync | rsync | — | — |
| rsync | rsync | — | — |
| rsync | rsync | — | — |
| rsync | rsync | — | — |
| rsync | rsync | — | — |
| rsync | rsync | — | — |
| rsync | rsync | — | — |
| rsync | rsync | — | — |
| rsync | rsync | — | — |
| rsync | rsync | — | — |
| rsync | rsync | — | — |
| rsync | rsync | — | — |
| rsync | rsync | — | — |
| rsync | rsync | — | — |
| rsync | rsync | — | — |
| rsync | rsync | — | — |
| rsync | rsync | — | — |
| rsync | rsync | — | — |
| rsync | rsync | — | — |
| rsync | rsync | — | — |
| rsync | rsync | — | — |
CVSS provenance
nvd9.3CRITICALAV:N/AC:M/Au:N/C:C/I:C/A:C
osv9.3CRITICAL