CVE-2002-0080

rsync, when running in daemon mode, does not properly call setgroups before dropping privileges, which could provide supplemental group privileges to local users, who could then read certain files that would otherwise be disallowed.

Severity	LOW
CVSS	2.1
CWE	CWE-269
KEV
Published	24 years ago
Modified	1 month ago

Related Products

Product	Advisory	Evidence
CiscoWorks Hosting Solution Engine (HSE)	cisco-sa-20020403-zlib-double-free	Cisco OpenVuln
Cisco Metro 1500 Series (MAN DWDM)	cisco-sa-20020403-zlib-double-free	Cisco OpenVuln
Cisco Intrusion Detection System (IDS)	cisco-sa-20020403-zlib-double-free	Cisco OpenVuln
Cisco Application and Content Networking System (ACNS) Software	cisco-sa-20020403-zlib-double-free	Cisco OpenVuln
Application and Content Networking System (ACNS) Software	cisco-sa-20020403-zlib-double-free	Cisco OpenVuln