CVE-2002-0391: CVE-2002-0391

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2002-0391

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Integer overflow in xdr_array function in RPC servers for operating systems that use libc, glibc, or other code based on SunRPC including dietlibc, allows remote attackers to execute arbitrary code by passing a large number of arguments to xdr_array through RPC services such as rpc.cmsd and dmispd.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Sun RPC XDR库xdr_array()函数整数溢出漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Sun公司的XDR库中所带的xdr_array()函数中存在一个整数溢出漏洞，攻击者可能利用这个漏洞远程或本地获取root权限。由于很多厂商都使用了Sun的XDR库或者基于Sun的库进行开发，其中也包含了这些问题代码，因此很多厂商的应用程序也受此问题影响。 XDR(外部数据表示)库用来提供一种平台无关的方法来将数据从一个系统进程发送给其他系统进程，比如通过一个网络连接发送。这种例程在远程过程调用(RPC)实现中被普遍使用，使其对程序员来说是透明的，他只需使用通用接口来与很多不同种类的系统通信。Sun公司开

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2002-0391

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2002-0391

Please Login to view more intelligence information

http://www.securityfocus.com/bid/5356vdb-entryx_refsource_BID
http://www.debian.org/security/2002/dsa-149vendor-advisoryx_refsource_DEBIAN
http://www.debian.org/security/2003/dsa-333vendor-advisoryx_refsource_DEBIAN
http://www.debian.org/security/2002/dsa-143vendor-advisoryx_refsource_DEBIAN
http://www.debian.org/security/2002/dsa-146vendor-advisoryx_refsource_DEBIAN
http://www.debian.org/security/2002/dsa-142vendor-advisoryx_refsource_DEBIAN
http://archives.neohapsis.com/archives/aix/2002-q4/0002.htmlvendor-advisoryx_refsource_AIXAPAR
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-057vendor-advisoryx_refsource_MS
http://www.kb.cert.org/vuls/id/192995third-party-advisoryx_refsource_CERT-VN
http://www.cert.org/advisories/CA-2002-25.htmlthird-party-advisoryx_refsource_CERT
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000535vendor-advisoryx_refsource_CONECTIVA
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000515vendor-advisoryx_refsource_CONECTIVA
ftp://patches.sgi.com/support/free/security/advisories/20020801-01-Pvendor-advisoryx_refsource_SGI
http://www.redhat.com/support/errata/RHSA-2003-168.htmlvendor-advisoryx_refsource_REDHAT
ftp://patches.sgi.com/support/free/security/advisories/20020801-01-Avendor-advisoryx_refsource_SGI
http://www.redhat.com/support/errata/RHSA-2002-173.htmlvendor-advisoryx_refsource_REDHAT
http://www.redhat.com/support/errata/RHSA-2003-212.htmlvendor-advisoryx_refsource_REDHAT
http://rhn.redhat.com/errata/RHSA-2002-172.htmlvendor-advisoryx_refsource_REDHAT
http://www.redhat.com/support/errata/RHSA-2002-167.htmlvendor-advisoryx_refsource_REDHAT
http://rhn.redhat.com/errata/RHSA-2002-166.htmlvendor-advisoryx_refsource_REDHAT
http://archives.neohapsis.com/archives/hp/2002-q3/0077.htmlvendor-advisoryx_refsource_HP
http://www.mandrakesoft.com/security/advisories?name=MDKSA-2002:057vendor-advisoryx_refsource_MANDRAKE
http://online.securityfocus.com/advisories/4402vendor-advisoryx_refsource_HP
ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2002-055.0.txtvendor-advisoryx_refsource_CALDERA
http://www.linuxsecurity.com/advisories/other_advisory-2399.htmlvendor-advisoryx_refsource_ENGARDE
ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2002-011.txt.ascvendor-advisoryx_refsource_NETBSD
http://marc.info/?l=bugtraq&m=103158632831416&w=2mailing-listx_refsource_BUGTRAQ
http://marc.info/?l=bugtraq&m=102821928418261&w=2vendor-advisoryx_refsource_FREEBSD
http://marc.info/?l=bugtraq&m=102821785316087&w=2mailing-listx_refsource_BUGTRAQ
http://www.iss.net/security_center/static/9170.phpvdb-entryx_refsource_XF
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9vdb-entrysignaturex_refsource_OVAL
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A42vdb-entrysignaturex_refsource_OVAL
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A4728vdb-entrysignaturex_refsource_OVAL
http://online.securityfocus.com/archive/1/285740mailing-listx_refsource_BUGTRAQ
http://marc.info/?l=bugtraq&m=102813809232532&w=2mailing-listx_refsource_BUGTRAQ
http://bvlive01.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=20823third-party-advisoryx_refsource_ISS
http://marc.info/?l=bugtraq&m=102831443208382&w=2mailing-listx_refsource_BUGTRAQ
http://archives.neohapsis.com/archives/bugtraq/2002-07/0514.htmlmailing-listx_refsource_BUGTRAQ
https://nvd.nist.gov/vuln/detail/CVE-2002-0391

New Vulnerabilities

Product: n/a

Vendor: n/a

V. Comments for CVE-2002-0391

No comments yet

Support Us — Your donation helps us keep running

I. Basic Information for CVE-2002-0391

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2002-0391

III. Intelligence Information for CVE-2002-0391

New Vulnerabilities

V. Comments for CVE-2002-0391

Leave a comment