CVE-1999-0473 — LOW (2.1) — White Hats Nepal

Q: What is CVE-1999-0473?

CVE-1999-0473 is a vulnerability with a CVSS score of 2.1 (LOW). The rsync command before rsync 2.3.1 may inadvertently change the permissions of the client's working directory to the permissions of the directory being transferred.

Q: How severe is CVE-1999-0473?

CVE-1999-0473 has been rated LOW with a CVSS base score of 2.1/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-1999-0473?

Check the references section above for vendor advisories and patch information. Affected products include: Andrew Tridgell Rsync.

Vulnerability Description

The rsync command before rsync 2.3.1 may inadvertently change the permissions of the client's working directory to the permissions of the directory being transferred.

CVSS Score

2.1

LOW

AV:L/AC:L/Au:N/C:N/I:P/A:N

Confidentiality

NONE

Integrity

PARTIAL

Availability

NONE

Affected Products

Vendor	Product	Versions
Andrew Tridgell	Rsync	<= 2.3.1

References

http://www.securityfocus.com/bid/145
http://www.securityfocus.com/bid/145

FAQ

What is CVE-1999-0473?

CVE-1999-0473 is a vulnerability with a CVSS score of 2.1 (LOW). The rsync command before rsync 2.3.1 may inadvertently change the permissions of the client's working directory to the permissions of the directory being transferred.

How severe is CVE-1999-0473?

CVE-1999-0473 has been rated LOW with a CVSS base score of 2.1/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-1999-0473?

Check the references section above for vendor advisories and patch information. Affected products include: Andrew Tridgell Rsync.