CVE-2002-0048
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2002-0048
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Multiple signedness errors (mixed signed and unsigned numbers) in the I/O functions of rsync 2.4.6, 2.3.2, and other versions allow remote attackers to cause a denial of service and execute arbitrary code in the rsync client or server.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
rsync有符号数组索引远程执行指令漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
rsync程序用于主机之间通过网络同步文件和目录,它可以用来维护几个FTP的镜像。程序运行于Linux和其他的Unix类操作系统,而且一般以root身份运行。 rsync实现上存在漏洞,在某些情况下可以使远程攻击者在主机上执行任意指令。 在某些情况下,一个由远程攻击者提供的有符号数会被rsync程序用来作为数组的索引,允许一个NULL字节被写到内存的任意位置。如果成功地利用这个漏洞,会导致堆栈破坏,攻击者可能以root身份在主机上执行任意指令。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Shenlong Deep Dive — AI Deep Analysis
10-question deep dive: root cause, exploitation, mitigation, urgency. Read summary free, full version requires login.
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2002-0048
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2002-0048
Please Login to view more intelligence information
- http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000458vendor-advisoryx_refsource_CONECTIVA
- http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-009.phpvendor-advisoryx_refsource_MANDRAKE
- http://www.caldera.com/support/security/advisories/CSSA-2002-003.0.txtvendor-advisoryx_refsource_CALDERA
- ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-02:10.rsync.ascvendor-advisoryx_refsource_FREEBSD
- http://lists.suse.com/archives/suse-security-announce/2002-Jan/0003.htmlvendor-advisoryx_refsource_SUSE
- https://nvd.nist.gov/vuln/detail/CVE-2002-0048
Same Patch Batch · n/a · 2002-02-18 · 6 CVEs total
| CVE-2001-0542 | Microsoft SQL Server RAISERROR语句缓冲区溢出漏洞(MS01-060) | |
| CVE-2001-0551 | CDE dtprintinfo帮助搜索本地缓冲区溢出漏洞 | |
| CVE-2002-0012 | 多个厂商SNMP实现中事件响应处理存在安全漏洞 | |
| CVE-2002-0013 | 多家厂商SNMP实现中SNMPv1请求处理存在多个安全漏洞 | |
| CVE-2002-0053 | Windows SNMP代理服务缓冲区溢出漏洞 |
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-8194
osTicket Dispatcher class.dispatcher.php cross-site request - CVE-2026-8193
Akaunting Invoice PDF Rendering dompdf.php server-side reque - CVE-2026-8186
Open5GS NF client.c ogs_sbi_client_send_via_scp_or_sepp out- - CVE-2026-8187
Open5GS UPF gtp-path.c _gtpv1_u_recv_cb resource consumption - CVE-2026-6667
PgBouncer missing authorization check in KILL_CLIENT admin c
V. Comments for CVE-2002-0048
No comments yet