CVE-2002-0048: CVE-2002-0048

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2002-0048

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Multiple signedness errors (mixed signed and unsigned numbers) in the I/O functions of rsync 2.4.6, 2.3.2, and other versions allow remote attackers to cause a denial of service and execute arbitrary code in the rsync client or server.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

rsync有符号数组索引远程执行指令漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

rsync程序用于主机之间通过网络同步文件和目录，它可以用来维护几个FTP的镜像。程序运行于Linux和其他的Unix类操作系统，而且一般以root身份运行。 rsync实现上存在漏洞，在某些情况下可以使远程攻击者在主机上执行任意指令。在某些情况下，一个由远程攻击者提供的有符号数会被rsync程序用来作为数组的索引，允许一个NULL字节被写到内存的任意位置。如果成功地利用这个漏洞，会导致堆栈破坏，攻击者可能以root身份在主机上执行任意指令。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2002-0048

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2002-0048

Please Login to view more intelligence information

http://www.securityfocus.com/bid/3958vdb-entryx_refsource_BID
http://www.debian.org/security/2002/dsa-106vendor-advisoryx_refsource_DEBIAN
http://www.kb.cert.org/vuls/id/800635third-party-advisoryx_refsource_CERT-VN
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000458vendor-advisoryx_refsource_CONECTIVA
http://www.redhat.com/support/errata/RHSA-2002-018.htmlvendor-advisoryx_refsource_REDHAT
http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-009.phpvendor-advisoryx_refsource_MANDRAKE
http://online.securityfocus.com/advisories/3839vendor-advisoryx_refsource_HP
http://www.caldera.com/support/security/advisories/CSSA-2002-003.0.txtvendor-advisoryx_refsource_CALDERA
ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-02:10.rsync.ascvendor-advisoryx_refsource_FREEBSD
http://www.linuxsecurity.com/advisories/other_advisory-1853.htmlvendor-advisoryx_refsource_ENGARDE
http://lists.suse.com/archives/suse-security-announce/2002-Jan/0003.htmlvendor-advisoryx_refsource_SUSE
http://www.iss.net/security_center/static/7993.phpvdb-entryx_refsource_XF
http://marc.info/?l=bugtraq&m=101223214906963&w=2mailing-listx_refsource_BUGTRAQ
http://marc.info/?l=bugtraq&m=101223603321315&w=2mailing-listx_refsource_BUGTRAQ
https://nvd.nist.gov/vuln/detail/CVE-2002-0048

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2002-0048

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

I. Basic Information for CVE-2002-0048

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2002-0048

III. Intelligence Information for CVE-2002-0048

IV. Related Vulnerabilities

V. Comments for CVE-2002-0048

Leave a comment