RSYNC: 6 vulnerabilities
(www.openwall.com)
from thomask@lemmy.sdf.org to cybersecurity@sh.itjust.works on 15 Jan 00:42
https://lemmy.sdf.org/post/27959263
from thomask@lemmy.sdf.org to cybersecurity@sh.itjust.works on 15 Jan 00:42
https://lemmy.sdf.org/post/27959263
Two independent groups of researchers have identified a total of 6 vulnerabilities in rsync. In the most severe CVE, an attacker only requires anonymous read access to a rsync server, such as a public mirror, to execute arbitrary code on the machine the server is running on.
threaded - newest