Unrated severityNVD Advisory· Published Apr 28, 2006· Updated Apr 16, 2026
CVE-2006-2083
CVE-2006-2083
Description
Integer overflow in the receive_xattr function in the extended attributes patch (xattr.c) for rsync before 2.6.8 might allow attackers to execute arbitrary code via crafted extended attributes that trigger a buffer overflow.
Affected products
8cpe:2.3:a:andrew_tridgell:rsync:2.6.0:*:*:*:*:*:*:*+ 7 more
- cpe:2.3:a:andrew_tridgell:rsync:2.6.0:*:*:*:*:*:*:*
- cpe:2.3:a:andrew_tridgell:rsync:2.6.1:*:*:*:*:*:*:*
- cpe:2.3:a:andrew_tridgell:rsync:2.6.2:*:*:*:*:*:*:*
- cpe:2.3:a:andrew_tridgell:rsync:2.6.3:*:*:*:*:*:*:*
- cpe:2.3:a:andrew_tridgell:rsync:2.6.4:*:*:*:*:*:*:*
- cpe:2.3:a:andrew_tridgell:rsync:2.6.5:*:*:*:*:*:*:*
- cpe:2.3:a:andrew_tridgell:rsync:2.6.6:*:*:*:*:*:*:*
- cpe:2.3:a:andrew_tridgell:rsync:2.6.7:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
9- samba.anu.edu.au/ftp/rsync/rsync-2.6.8-NEWSnvd
- secunia.com/advisories/19920nvd
- secunia.com/advisories/19964nvd
- secunia.com/advisories/20011nvd
- www.gentoo.org/security/en/glsa/glsa-200605-05.xmlnvd
- www.securityfocus.com/bid/17788nvd
- www.trustix.org/errata/2006/0024nvd
- www.vupen.com/english/advisories/2006/1606nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/26208nvd
News mentions
0No linked articles in our index yet.