NA – CVE-2019-25017 – An issue was discovered in rcp in MIT krb5-appl…

An issue was discovered in rcp in MIT krb5-appl through 1.0.3. Due to the rcp implementation being derived from 1983 rcp, the server chooses which files/directories are sent to the client. However, the rcp client only performs cursory validation of the object name returned (only directory traversal attacks are prevented).Latest news clusters for enRead More