What is the severity of CVE-2007-6200?

The severity of CVE-2007-6200 is classified as moderate, primarily affecting systems running vulnerable versions of rsync.

How do I fix CVE-2007-6200?

To fix CVE-2007-6200, upgrade to rsync version 3.0.0pre6 or later, which addresses the vulnerability.

What systems are affected by CVE-2007-6200?

CVE-2007-6200 affects rsync versions prior to 3.0.0pre6, particularly when a writable rsync daemon is running.

What types of attacks are possible with CVE-2007-6200?

CVE-2007-6200 allows remote attackers to bypass exclude filters and access hidden files via symlink and directory options.

Is CVE-2007-6200 exploitable over the network?

Yes, CVE-2007-6200 is exploitable over the network, specifically targeting configurations of writable rsync daemons.

Vulnerability/
CVE-2007-6200

critical

CWE

264

1/12/2007

15/10/2018

CVE-2007-6200

First published: Sat Dec 01 2007(Updated: )

Unspecified vulnerability in rsync before 3.0.0pre6, when running a writable rsync daemon, allows remote attackers to bypass exclude, exclude_from, and filter and read or write hidden files via (1) symlink, (2) partial-dir, (3) backup-dir, and unspecified (4) dest options.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Slackware Linux	=8.1
Slackware Linux	=9.0
Slackware Linux	=9.1
Slackware Linux	=10.0
Slackware Linux	=10.1
Slackware Linux	=10.2
Slackware Linux	=11.0
Slackware Linux	=12.0
rsync rsync	=2.3.1
rsync rsync	=2.3.2
rsync rsync	=2.3.2_1.2alpha
rsync rsync	=2.3.2_1.2arm
rsync rsync	=2.3.2_1.2intel
rsync rsync	=2.3.2_1.2m68k
rsync rsync	=2.3.2_1.2ppc
rsync rsync	=2.3.2_1.2sparc
rsync rsync	=2.3.2_1.3
rsync rsync	=2.4.0
rsync rsync	=2.4.1
rsync rsync	=2.4.3
rsync rsync	=2.4.4
rsync rsync	=2.4.5
rsync rsync	=2.4.6
rsync rsync	=2.4.8
rsync rsync	=2.5.0
rsync rsync	=2.5.1
rsync rsync	=2.5.2
rsync rsync	=2.5.3
rsync rsync	=2.5.4
rsync rsync	=2.5.5
rsync rsync	=2.5.6
rsync rsync	=2.5.7
rsync rsync	=2.6
rsync rsync	=2.6.1
rsync rsync	=2.6.2
rsync rsync	=2.6.5
rsync rsync	=2.6.6
rsync rsync	=2.6.7
rsync rsync	=2.6.8
rsync rsync	=2.6.9

Remedy

http://secunia.com/advisories/27863

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2007-6200?
The severity of CVE-2007-6200 is classified as moderate, primarily affecting systems running vulnerable versions of rsync.
How do I fix CVE-2007-6200?
To fix CVE-2007-6200, upgrade to rsync version 3.0.0pre6 or later, which addresses the vulnerability.
What systems are affected by CVE-2007-6200?
CVE-2007-6200 affects rsync versions prior to 3.0.0pre6, particularly when a writable rsync daemon is running.
What types of attacks are possible with CVE-2007-6200?
CVE-2007-6200 allows remote attackers to bypass exclude filters and access hidden files via symlink and directory options.
Is CVE-2007-6200 exploitable over the network?
Yes, CVE-2007-6200 is exploitable over the network, specifically targeting configurations of writable rsync daemons.

collector/nvd-historical
agent/references
agent/type
agent/last-modified-date
agent/first-publish-date
agent/event
agent/remedy
agent/weakness
agent/severity
agent/author
agent/description
agent/tags
agent/softwarecombine
collector/nvd-index
agent/software-canonical-lookup-request
vendor/slackware
canonical/slackware linux
version/slackware linux/8.1
version/slackware linux/9.0
version/slackware linux/9.1
version/slackware linux/10.0
version/slackware linux/10.1
version/slackware linux/10.2
version/slackware linux/11.0
version/slackware linux/12.0
vendor/rsync
canonical/rsync rsync
version/rsync rsync/2.3.1
version/rsync rsync/2.3.2
version/rsync rsync/2.3.2_1.2alpha
version/rsync rsync/2.3.2_1.2arm
version/rsync rsync/2.3.2_1.2intel
version/rsync rsync/2.3.2_1.2m68k
version/rsync rsync/2.3.2_1.2ppc
version/rsync rsync/2.3.2_1.2sparc
version/rsync rsync/2.3.2_1.3
version/rsync rsync/2.4.0
version/rsync rsync/2.4.1
version/rsync rsync/2.4.3
version/rsync rsync/2.4.4
version/rsync rsync/2.4.5
version/rsync rsync/2.4.6
version/rsync rsync/2.4.8
version/rsync rsync/2.5.0
version/rsync rsync/2.5.1
version/rsync rsync/2.5.2
version/rsync rsync/2.5.3
version/rsync rsync/2.5.4
version/rsync rsync/2.5.5
version/rsync rsync/2.5.6
version/rsync rsync/2.5.7
version/rsync rsync/2.6
version/rsync rsync/2.6.1
version/rsync rsync/2.6.2
version/rsync rsync/2.6.5
version/rsync rsync/2.6.6
version/rsync rsync/2.6.7
version/rsync rsync/2.6.8
version/rsync rsync/2.6.9

Frequently Asked Questions

What is the severity of CVE-2007-6200?
The severity of CVE-2007-6200 is classified as moderate, primarily affecting systems running vulnerable versions of rsync.
How do I fix CVE-2007-6200?
To fix CVE-2007-6200, upgrade to rsync version 3.0.0pre6 or later, which addresses the vulnerability.
What systems are affected by CVE-2007-6200?
CVE-2007-6200 affects rsync versions prior to 3.0.0pre6, particularly when a writable rsync daemon is running.
What types of attacks are possible with CVE-2007-6200?
CVE-2007-6200 allows remote attackers to bypass exclude filters and access hidden files via symlink and directory options.
Is CVE-2007-6200 exploitable over the network?
Yes, CVE-2007-6200 is exploitable over the network, specifically targeting configurations of writable rsync daemons.

CVE-2007-6200

Remedy

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2007-6200?

How do I fix CVE-2007-6200?

What systems are affected by CVE-2007-6200?

What types of attacks are possible with CVE-2007-6200?

Is CVE-2007-6200 exploitable over the network?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2007-6200?

How do I fix CVE-2007-6200?

What systems are affected by CVE-2007-6200?

What types of attacks are possible with CVE-2007-6200?

Is CVE-2007-6200 exploitable over the network?