Andrew Tridgell: >> Rsync >> 2.3.2_1.2 Security Vulnerabilities
Directory traversal vulnerability in the sanitize_path function in util.c for rsync 2.6.2 and earlier, when chroot is disabled, allows attackers to read or write certain files.
CVSS Score
6.4
EPSS Score
0.008
Published
2004-10-20
Multiple signedness errors (mixed signed and unsigned numbers) in the I/O functions of rsync 2.4.6, 2.3.2, and other versions allow remote attackers to cause a denial of service and execute arbitrary code in the rsync client or server.
CVSS Score
10.0
EPSS Score
0.695
Published
2002-02-27