Inicial ▼ Bookkeeping
Online ▼ Auditorias ▼
DNS
Administrado ▼
Acerca de DNS
Ordenar/Renovar
Preguntas Frecuentes
AUP
Dynamic DNS Clients
Configurar Dominios Dynamic DNS Update Password Monitoreo
de Redes ▼
Enterprise
Avanzado
Estándarr
Prueba
Preguntas Frecuentes
Resumen de Precio/Funciones
Ordenar
Muestras
Configure/Status Alert Profiles | |||
ID de Prueba: | 1.3.6.1.4.1.25623.1.0.801772 |
Categoría: | Denial of Service |
Título: | Rsync Multiple Denial of Service Vulnerabilities (Windows) |
Resumen: | This host is installed with Rsync and is prone to multiple denial; of service vulnerabilities. |
Descripción: | Summary: This host is installed with Rsync and is prone to multiple denial of service vulnerabilities. Vulnerability Insight: The flaws are due to - a memory corruption error when processing malformed file list data. - error while handling directory paths, '--backup-dir', filter/exclude lists. Vulnerability Impact: Successful exploitation will allow remote attackers to crash an affected application or execute arbitrary code by tricking a user into connecting to a malicious rsync server and using the '--recursive' and '--delete' options without the '--owner' option. Affected Software/OS: rsync version 3.x before 3.0.8 Solution: Upgrade to rsync version 3.0.8 or later CVSS Score: 5.1 CVSS Vector: AV:N/AC:H/Au:N/C:P/I:P/A:P |
Referencia Cruzada: |
Common Vulnerability Exposure (CVE) ID: CVE-2011-1097 http://lists.fedoraproject.org/pipermail/package-announce/2011-April/057641.html http://lists.fedoraproject.org/pipermail/package-announce/2011-April/057737.html http://lists.fedoraproject.org/pipermail/package-announce/2011-April/057736.html HPdes Security Advisory: HPSBMU02752 http://marc.info/?l=bugtraq&m=133226187115472&w=2 HPdes Security Advisory: SSRT100802 http://www.mandriva.com/security/advisories?name=MDVSA-2011:066 http://lists.samba.org/archive/rsync/2011-January/025988.html http://www.redhat.com/support/errata/RHSA-2011-0390.html http://securitytracker.com/id?1025256 http://secunia.com/advisories/44071 http://secunia.com/advisories/44088 SuSE Security Announcement: SUSE-SR:2011:009 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2011-05/msg00005.html http://www.vupen.com/english/advisories/2011/0792 http://www.vupen.com/english/advisories/2011/0793 http://www.vupen.com/english/advisories/2011/0873 http://www.vupen.com/english/advisories/2011/0876 |
Copyright | Copyright (C) 2011 Greenbone Networks GmbH |
Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora. |