Misconfigured Rsync Daemon Exposes Hotel Routers to Risk
Mar 28, 2015, 10:00 (0 Talkback[s])
(Other stories by Sean Michael Kerner)
Hospitality network equipment vendor ANTlabs issued a public advisory on March 26 about a vulnerability (identified as CVE-2015-0932) in its systems. The vulnerability is the configuration of the rsync service, which is a common synchronization utility found on Linux and Unix systems. ANTlabs InnGate gateways were running an rsync service in a manner that is not secure.