Archaic Checksum Mishandling in rsync 3.1.3-development before 2017-10-24

Archaic Checksum Mishandling in rsync 3.1.3-development before 2017-10-24

CVE-2017-15994 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

rsync 3.1.3-development before 2017-10-24 mishandles archaic checksums, which makes it easier for remote attackers to bypass intended access restrictions. NOTE: the rsync development branch has significant use beyond the rsync developers, e.g., the code has been copied for use in various GitHub projects.

Learn more about our Web Application Penetration Testing UK.