Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2002-0080

rsync, when running in daemon mode, does not properly call setgroups before dropping privileges, which could provide supplemental group privileges to local users, who could then read certain files that would otherwise be disallowed.

  • Published: Mar 15, 2002
  • Updated: Apr 13, 2023
  • CVE: CVE-2002-0080
  • Severity: Low
  • Exploit:

CVSS v2:

  • Severity: Low
  • Score: 2.1
  • AV:L/AC:L/Au:N/C:P/I:N/A:N

CWEs:

Software From Fixed in
samba / rsync - 2.5.3
redhat / linux 7.0 7.0.x
redhat / linux 7.2 7.2.x
redhat / linux 6.2 6.2.x
redhat / linux 7.1 7.1.x