| Name | CVE-2004-0426 |
| Description | rsync before 2.6.1 does not properly sanitize paths when running a read/write daemon without using chroot, which allows remote attackers to write files outside of the module's path. |
| Source | CVE (at NVD; CERT, LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SuSE, Mageia, GitHub code/issues, web search, more) |
| References | DSA-499 |
| NVD severity | medium (attack range: remote) |
The table below lists information on source packages.
The information below is based on the following data on fixed versions.