Summary: Over 660,000 exposed Rsync servers are at risk due to six newly discovered vulnerabilities, including a critical heap-buffer overflow that allows remote code execution. These vulnerabilities can be exploited by attackers with anonymous read access to the servers, potentially leading to significant data breaches and system compromises. Users are urged to upgrade to version 3.4.0 or secure their servers to mitigate these risks.
Threat Actor: Unknown | unknown
Victim: Rsync Users | Rsync
Keypoints :
- Critical vulnerabilities include a heap buffer overflow (CVE-2024-12084) allowing arbitrary code execution with a CVSS score of 9.8.
- Other flaws enable information leaks, path traversal, and arbitrary file access, affecting all versions below 3.4.0.
- Over 660,000 exposed Rsync servers, primarily in China, are potentially vulnerable, emphasizing the need for immediate upgrades or security configurations.