PT-2005-2083 · Rsnapshot · Rsnapshot

Nathan Rosenquist

Published

2005-04-10

Updated

2016-10-18

CVE-2005-1064

CVSS v2.0

4.6

Medium

Vector

AV:L/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions rsnapshot versions 1.1.x through 1.1.6 rsnapshot version 1.2.0

Description The issue allows local users to obtain access to arbitrary files due to the copy symlink function changing the ownership of files that a symlink points to rather than the symlink itself.

Recommendations For rsnapshot version 1.2.0, update to a version that fixes the issue with the copy symlink function. For rsnapshot versions 1.1.x through 1.1.6, update to version 1.1.7 or later to resolve the issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2005-1064

Affected Products

Rsnapshot

PT-2005-2083 · Rsnapshot · Rsnapshot

CVE-2005-1064

Related Identifiers

Affected Products

References · 10