CVE-2017-17433 — Missing Authorization in Samba Rsync

CWE-862 — Missing Authorization CWE-287 — Improper Authentication11 documents8 sources

Severity

3.7LOWNVD

EPSS

1.6%

top 18.53%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Samba Rsync Debian Linux

Timeline

PublishedDec 6

Latest updateMay 13

Description

The recv_files function in receiver.c in the daemon in rsync 3.1.2, and 3.1.3-development before 2017-12-03, proceeds with certain file metadata updates before checking for a filename in the daemon_filter_list data structure, which allows remote attackers to bypass intended access restrictions.

CVSS vector

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:NExploitability: 2.2 | Impact: 1.4

Affected Packages3 packages

▶Debiansamba/rsync< 3.1.2-2.1+3

▶Ubuntusamba/rsync< 3.1.0-2ubuntu0.3+1

▶NVDsamba/rsync3.1.2

Also affects: Debian Linux 7.0, 8.0, 9.0

Patches

Patch: bugzilla.redhat.com ↗

🔴Vulnerability Details

GHSA

GHSA-wg8h-hh94-gpv6: The recv_files function in receiver↗2022-05-13

▶

OSV

rsync vulnerabilities↗2017-12-07

▶

OSV

CVE-2017-17433: The recv_files function in receiver↗2017-12-06

▶

CVEList

CVE-2017-17433: The recv_files function in receiver↗2017-12-06

▶

📋Vendor Advisories

Ubuntu

rsync vulnerabilities↗2017-12-07

▶

Ubuntu

rsync vulnerabilities↗2017-12-07

▶

Red Hat

rsync: recv_files function metadata handling allows for access restriction bypass↗2017-12-04

▶

Debian

CVE-2017-17433: rsync - The recv_files function in receiver.c in the daemon in rsync 3.1.2, and 3.1.3-de...↗2017

▶

💬Community

Bugzilla

CVE-2017-17433 rsync: recv_files function metadata handling allows for access restriction bypass↗2017-12-06

▶

Bugzilla

CVE-2017-15994 CVE-2017-16548 CVE-2017-17433 CVE-2017-17434 rsync: various flaws [fedora-all]↗2017-11-09

▶