Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-c8h5-wzqz-e3c6
SummaryBuffer overflow in the open_socket_out function in socket.c for rsync 2.5.7 and earlier allows local users to cause a denial of service (crash) and possibly execute arbitrary code via a long RSYNC_PROXY environment variable. NOTE: since rsync is not setuid, this issue does not provide any additional privileges beyond those that are already available to the user. Therefore this issue may be REJECTED in the future.
Aliases
0
alias CVE-2004-2093
Fixed_packages
0
url pkg:deb/debian/rsync@2.6.1-1?distro=trixie
purl pkg:deb/debian/rsync@2.6.1-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rsync@2.6.1-1%3Fdistro=trixie
1
url pkg:deb/debian/rsync@2.6.4-6
purl pkg:deb/debian/rsync@2.6.4-6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1dp2-jcqh-7ket
1
vulnerability VCID-1snq-bkw3-3kff
2
vulnerability VCID-2phq-g3rz-2be8
3
vulnerability VCID-472y-7aza-j7c4
4
vulnerability VCID-4g8w-n139-dfbn
5
vulnerability VCID-66n1-gnxa-2uf3
6
vulnerability VCID-78yq-gu4t-rke9
7
vulnerability VCID-9d7g-bby6-8fb3
8
vulnerability VCID-c1ec-hvuv-ckgk
9
vulnerability VCID-eyjp-7kks-jbfr
10
vulnerability VCID-f6ja-7k85-j7aa
11
vulnerability VCID-f9da-9x6z-kqcv
12
vulnerability VCID-h2jt-8ppk-nbh9
13
vulnerability VCID-m6xx-a91r-sbhu
14
vulnerability VCID-mr6h-6jrp-gyf3
15
vulnerability VCID-pfb2-95fp-7bbm
16
vulnerability VCID-q576-uw5g-8kh3
17
vulnerability VCID-qwud-4v7w-43dv
18
vulnerability VCID-smft-ms93-6kf1
19
vulnerability VCID-y5ep-xtwr-ckg6
20
vulnerability VCID-yd1c-ptsv-hffu
21
vulnerability VCID-zr3m-d432-vqge
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rsync@2.6.4-6
2
url pkg:deb/debian/rsync@3.2.3-4%2Bdeb11u1?distro=trixie
purl pkg:deb/debian/rsync@3.2.3-4%2Bdeb11u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4g3g-qmrg-tbf6
1
vulnerability VCID-ua8q-v9qd-wqb5
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rsync@3.2.3-4%252Bdeb11u1%3Fdistro=trixie
3
url pkg:deb/debian/rsync@3.2.7-1%2Bdeb12u4?distro=trixie
purl pkg:deb/debian/rsync@3.2.7-1%2Bdeb12u4?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rsync@3.2.7-1%252Bdeb12u4%3Fdistro=trixie
4
url pkg:deb/debian/rsync@3.4.1%2Bds1-5%2Bdeb13u1?distro=trixie
purl pkg:deb/debian/rsync@3.4.1%2Bds1-5%2Bdeb13u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rsync@3.4.1%252Bds1-5%252Bdeb13u1%3Fdistro=trixie
5
url pkg:deb/debian/rsync@3.4.1%2Bds1-7?distro=trixie
purl pkg:deb/debian/rsync@3.4.1%2Bds1-7?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rsync@3.4.1%252Bds1-7%3Fdistro=trixie
Affected_packages
0
url pkg:deb/debian/rsync@1.6.9-1
purl pkg:deb/debian/rsync@1.6.9-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1dp2-jcqh-7ket
1
vulnerability VCID-1snq-bkw3-3kff
2
vulnerability VCID-2phq-g3rz-2be8
3
vulnerability VCID-472y-7aza-j7c4
4
vulnerability VCID-4g8w-n139-dfbn
5
vulnerability VCID-66n1-gnxa-2uf3
6
vulnerability VCID-78yq-gu4t-rke9
7
vulnerability VCID-9d7g-bby6-8fb3
8
vulnerability VCID-c1ec-hvuv-ckgk
9
vulnerability VCID-c8h5-wzqz-e3c6
10
vulnerability VCID-eyjp-7kks-jbfr
11
vulnerability VCID-f6ja-7k85-j7aa
12
vulnerability VCID-f9da-9x6z-kqcv
13
vulnerability VCID-h2jt-8ppk-nbh9
14
vulnerability VCID-m6xx-a91r-sbhu
15
vulnerability VCID-mr6h-6jrp-gyf3
16
vulnerability VCID-pfb2-95fp-7bbm
17
vulnerability VCID-q576-uw5g-8kh3
18
vulnerability VCID-qwud-4v7w-43dv
19
vulnerability VCID-rp3f-utn4-ubb7
20
vulnerability VCID-smft-ms93-6kf1
21
vulnerability VCID-su3r-5r3f-fbfr
22
vulnerability VCID-ty4c-hwkm-uqes
23
vulnerability VCID-y5ep-xtwr-ckg6
24
vulnerability VCID-yd1c-ptsv-hffu
25
vulnerability VCID-zr3m-d432-vqge
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rsync@1.6.9-1
1
url pkg:deb/debian/rsync@2.3.1-0.slink.1
purl pkg:deb/debian/rsync@2.3.1-0.slink.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1dp2-jcqh-7ket
1
vulnerability VCID-1snq-bkw3-3kff
2
vulnerability VCID-2phq-g3rz-2be8
3
vulnerability VCID-472y-7aza-j7c4
4
vulnerability VCID-4g8w-n139-dfbn
5
vulnerability VCID-66n1-gnxa-2uf3
6
vulnerability VCID-78yq-gu4t-rke9
7
vulnerability VCID-9d7g-bby6-8fb3
8
vulnerability VCID-c1ec-hvuv-ckgk
9
vulnerability VCID-c8h5-wzqz-e3c6
10
vulnerability VCID-eyjp-7kks-jbfr
11
vulnerability VCID-f6ja-7k85-j7aa
12
vulnerability VCID-f9da-9x6z-kqcv
13
vulnerability VCID-h2jt-8ppk-nbh9
14
vulnerability VCID-m6xx-a91r-sbhu
15
vulnerability VCID-mr6h-6jrp-gyf3
16
vulnerability VCID-pfb2-95fp-7bbm
17
vulnerability VCID-q576-uw5g-8kh3
18
vulnerability VCID-qwud-4v7w-43dv
19
vulnerability VCID-rp3f-utn4-ubb7
20
vulnerability VCID-smft-ms93-6kf1
21
vulnerability VCID-su3r-5r3f-fbfr
22
vulnerability VCID-ty4c-hwkm-uqes
23
vulnerability VCID-y5ep-xtwr-ckg6
24
vulnerability VCID-yd1c-ptsv-hffu
25
vulnerability VCID-zr3m-d432-vqge
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rsync@2.3.1-0.slink.1
2
url pkg:deb/debian/rsync@2.3.2-1.2
purl pkg:deb/debian/rsync@2.3.2-1.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1dp2-jcqh-7ket
1
vulnerability VCID-1snq-bkw3-3kff
2
vulnerability VCID-2phq-g3rz-2be8
3
vulnerability VCID-472y-7aza-j7c4
4
vulnerability VCID-4g8w-n139-dfbn
5
vulnerability VCID-66n1-gnxa-2uf3
6
vulnerability VCID-78yq-gu4t-rke9
7
vulnerability VCID-9d7g-bby6-8fb3
8
vulnerability VCID-c1ec-hvuv-ckgk
9
vulnerability VCID-c8h5-wzqz-e3c6
10
vulnerability VCID-eyjp-7kks-jbfr
11
vulnerability VCID-f6ja-7k85-j7aa
12
vulnerability VCID-f9da-9x6z-kqcv
13
vulnerability VCID-h2jt-8ppk-nbh9
14
vulnerability VCID-m6xx-a91r-sbhu
15
vulnerability VCID-mr6h-6jrp-gyf3
16
vulnerability VCID-pfb2-95fp-7bbm
17
vulnerability VCID-q576-uw5g-8kh3
18
vulnerability VCID-qwud-4v7w-43dv
19
vulnerability VCID-rp3f-utn4-ubb7
20
vulnerability VCID-smft-ms93-6kf1
21
vulnerability VCID-su3r-5r3f-fbfr
22
vulnerability VCID-ty4c-hwkm-uqes
23
vulnerability VCID-y5ep-xtwr-ckg6
24
vulnerability VCID-yd1c-ptsv-hffu
25
vulnerability VCID-zr3m-d432-vqge
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rsync@2.3.2-1.2
3
url pkg:deb/debian/rsync@2.5.5-0.6
purl pkg:deb/debian/rsync@2.5.5-0.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1dp2-jcqh-7ket
1
vulnerability VCID-1snq-bkw3-3kff
2
vulnerability VCID-2phq-g3rz-2be8
3
vulnerability VCID-472y-7aza-j7c4
4
vulnerability VCID-4g8w-n139-dfbn
5
vulnerability VCID-66n1-gnxa-2uf3
6
vulnerability VCID-78yq-gu4t-rke9
7
vulnerability VCID-9d7g-bby6-8fb3
8
vulnerability VCID-c1ec-hvuv-ckgk
9
vulnerability VCID-c8h5-wzqz-e3c6
10
vulnerability VCID-eyjp-7kks-jbfr
11
vulnerability VCID-f6ja-7k85-j7aa
12
vulnerability VCID-f9da-9x6z-kqcv
13
vulnerability VCID-h2jt-8ppk-nbh9
14
vulnerability VCID-m6xx-a91r-sbhu
15
vulnerability VCID-mr6h-6jrp-gyf3
16
vulnerability VCID-pfb2-95fp-7bbm
17
vulnerability VCID-q576-uw5g-8kh3
18
vulnerability VCID-qwud-4v7w-43dv
19
vulnerability VCID-rp3f-utn4-ubb7
20
vulnerability VCID-smft-ms93-6kf1
21
vulnerability VCID-su3r-5r3f-fbfr
22
vulnerability VCID-ty4c-hwkm-uqes
23
vulnerability VCID-y5ep-xtwr-ckg6
24
vulnerability VCID-yd1c-ptsv-hffu
25
vulnerability VCID-zr3m-d432-vqge
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rsync@2.5.5-0.6
References
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2004-2093
reference_id
reference_type
scores
0
value 0.00728
scoring_system epss
scoring_elements 0.72573
published_at 2026-04-01T12:55:00Z
1
value 0.00728
scoring_system epss
scoring_elements 0.72581
published_at 2026-04-02T12:55:00Z
2
value 0.00728
scoring_system epss
scoring_elements 0.72598
published_at 2026-04-04T12:55:00Z
3
value 0.00728
scoring_system epss
scoring_elements 0.72574
published_at 2026-04-07T12:55:00Z
4
value 0.00728
scoring_system epss
scoring_elements 0.72613
published_at 2026-04-08T12:55:00Z
5
value 0.00728
scoring_system epss
scoring_elements 0.72625
published_at 2026-04-09T12:55:00Z
6
value 0.00728
scoring_system epss
scoring_elements 0.72648
published_at 2026-04-11T12:55:00Z
7
value 0.00728
scoring_system epss
scoring_elements 0.72631
published_at 2026-04-12T12:55:00Z
8
value 0.00728
scoring_system epss
scoring_elements 0.72621
published_at 2026-04-13T12:55:00Z
9
value 0.00728
scoring_system epss
scoring_elements 0.72663
published_at 2026-04-16T12:55:00Z
10
value 0.00728
scoring_system epss
scoring_elements 0.72673
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2004-2093
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-2093
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-2093
2
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/152.c
reference_id OSVDB-45182;CVE-2004-2093
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/152.c
Weaknesses
Exploits
0
date_added 2004-02-12
description rsync 2.5.7 - Local Stack Overflow / Local Privilege Escalation
required_action null
due_date null
notes null
known_ransomware_campaign_use true
source_date_published 2004-02-13
exploit_type local
platform linux
source_date_updated 2017-04-15
data_source Exploit-DB
source_url
Severity_range_scorenull
Exploitability2.0
Weighted_severity0.0
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-c8h5-wzqz-e3c6