FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

rsnapshot -- local privilege escalation

Affected packages
rsnapshot < 1.1.7

Details

VuXML ID 8c5ad0cf-ba37-11d9-837d-000e0c2e438a
Discovery 2005-04-10
Entry 2005-05-01

An rsnapshot Advisory reports:

The copy_symlink() subroutine in rsnapshot incorrectly changes file ownership on the files pointed to by symlinks, not on the symlinks themselves. This would allow, under certain circumstances, an arbitrary user to take ownership of a file on the main filesystem.

References

Bugtraq ID 13095
CVE Name CVE-2005-1064
URL http://www.rsnapshot.org/security/2005/001.html