CVE-2002-0391

EPSS 8.26% · P92 Updated Feb 27, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2002-0391

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Integer overflow in xdr_array function in RPC servers for operating systems that use libc, glibc, or other code based on SunRPC including dietlibc, allows remote attackers to execute arbitrary code by passing a large number of arguments to xdr_array through RPC services such as rpc.cmsd and dmispd.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Sun RPC XDR库xdr_array()函数整数溢出漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Sun公司的XDR库中所带的xdr_array()函数中存在一个整数溢出漏洞，攻击者可能利用这个漏洞远程或本地获取root权限。由于很多厂商都使用了Sun的XDR库或者基于Sun的库进行开发，其中也包含了这些问题代码，因此很多厂商的应用程序也受此问题影响。 XDR(外部数据表示)库用来提供一种平台无关的方法来将数据从一个系统进程发送给其他系统进程，比如通过一个网络连接发送。这种例程在远程过程调用(RPC)实现中被普遍使用，使其对程序员来说是透明的，他只需使用通用接口来与很多不同种类的系统通信。Sun公司开

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2002-0391

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2002-0391

请登录查看更多情报信息。

http://www.securityfocus.com/bid/5356vdb-entryx_refsource_BID
http://www.debian.org/security/2002/dsa-149vendor-advisoryx_refsource_DEBIAN
http://www.debian.org/security/2003/dsa-333vendor-advisoryx_refsource_DEBIAN
http://www.debian.org/security/2002/dsa-143vendor-advisoryx_refsource_DEBIAN
http://www.debian.org/security/2002/dsa-146vendor-advisoryx_refsource_DEBIAN
http://www.debian.org/security/2002/dsa-142vendor-advisoryx_refsource_DEBIAN
http://archives.neohapsis.com/archives/aix/2002-q4/0002.htmlvendor-advisoryx_refsource_AIXAPAR
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-057vendor-advisoryx_refsource_MS
http://www.kb.cert.org/vuls/id/192995third-party-advisoryx_refsource_CERT-VN
http://www.cert.org/advisories/CA-2002-25.htmlthird-party-advisoryx_refsource_CERT
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000535vendor-advisoryx_refsource_CONECTIVA
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000515vendor-advisoryx_refsource_CONECTIVA
ftp://patches.sgi.com/support/free/security/advisories/20020801-01-Pvendor-advisoryx_refsource_SGI
http://www.redhat.com/support/errata/RHSA-2003-168.htmlvendor-advisoryx_refsource_REDHAT
ftp://patches.sgi.com/support/free/security/advisories/20020801-01-Avendor-advisoryx_refsource_SGI
http://www.redhat.com/support/errata/RHSA-2002-173.htmlvendor-advisoryx_refsource_REDHAT
http://www.redhat.com/support/errata/RHSA-2003-212.htmlvendor-advisoryx_refsource_REDHAT
http://rhn.redhat.com/errata/RHSA-2002-172.htmlvendor-advisoryx_refsource_REDHAT
http://www.redhat.com/support/errata/RHSA-2002-167.htmlvendor-advisoryx_refsource_REDHAT
http://rhn.redhat.com/errata/RHSA-2002-166.htmlvendor-advisoryx_refsource_REDHAT
http://archives.neohapsis.com/archives/hp/2002-q3/0077.htmlvendor-advisoryx_refsource_HP
http://www.mandrakesoft.com/security/advisories?name=MDKSA-2002:057vendor-advisoryx_refsource_MANDRAKE
http://online.securityfocus.com/advisories/4402vendor-advisoryx_refsource_HP
ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2002-055.0.txtvendor-advisoryx_refsource_CALDERA
http://www.linuxsecurity.com/advisories/other_advisory-2399.htmlvendor-advisoryx_refsource_ENGARDE
ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2002-011.txt.ascvendor-advisoryx_refsource_NETBSD
http://marc.info/?l=bugtraq&m=103158632831416&w=2mailing-listx_refsource_BUGTRAQ
http://marc.info/?l=bugtraq&m=102821928418261&w=2vendor-advisoryx_refsource_FREEBSD
http://marc.info/?l=bugtraq&m=102821785316087&w=2mailing-listx_refsource_BUGTRAQ
http://www.iss.net/security_center/static/9170.phpvdb-entryx_refsource_XF
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9vdb-entrysignaturex_refsource_OVAL
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A42vdb-entrysignaturex_refsource_OVAL
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A4728vdb-entrysignaturex_refsource_OVAL
http://online.securityfocus.com/archive/1/285740mailing-listx_refsource_BUGTRAQ
http://marc.info/?l=bugtraq&m=102813809232532&w=2mailing-listx_refsource_BUGTRAQ
http://bvlive01.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=20823third-party-advisoryx_refsource_ISS
http://marc.info/?l=bugtraq&m=102831443208382&w=2mailing-listx_refsource_BUGTRAQ
http://archives.neohapsis.com/archives/bugtraq/2002-07/0514.htmlmailing-listx_refsource_BUGTRAQ
https://nvd.nist.gov/vuln/detail/CVE-2002-0391

Same Patch Batch · n/a · 2003-04-02 · 350 CVEs total

CVE-2002-0719		Microsoft Content Management Server 2001 SQL注入漏洞(MS02-041)
CVE-2002-0741		PsyBNC超长密码导致拒绝服务漏洞
CVE-2002-0738		MHonArc HTML脚本过滤可绕过漏洞
CVE-2002-0737		Sambar WEB服务程序服务端文件解析可绕过漏洞
CVE-2002-0736		Microsoft BackOffice授权问题漏洞
CVE-2002-0734		B2 B2config.php远程命令执行漏洞
CVE-2002-0733		ACME Labs thttpd跨站脚本执行漏洞
CVE-2002-0727		Microsoft OWC可导致Active脚本执行漏洞
CVE-2002-0726		Microsoft TSAC ActiveX远程缓冲区溢出漏洞(MS02-046)
CVE-2002-0722		Microsoft Internet Explorer 安全漏洞
CVE-2002-0720		Microsoft Windows 2000网络连接管理器权限提升漏洞(MS02-042)
CVE-2002-0704		Linux NetFilter NAT信息泄露漏洞
CVE-2002-0697		Microsoft Metadirectory服务远程LDAP客户端管理员访问漏洞(MS02-036)
CVE-2002-0698		Microsoft Exchange Server 缓冲区错误漏洞
CVE-2002-0700		Microsoft Content Management Server 2001用户认证缓冲区溢出漏洞(MS02-041)
CVE-2002-0701		多个供应商进BSD KTrace SUID/SGID进程追踪漏洞
CVE-2002-0703		Gisle Aas Digest-MD5 UTF-8摘要计算存在漏洞
CVE-2002-0714		Squid FTP代理数据通道漏洞
CVE-2002-0718		Microsoft Content Management Server 2001文件上传漏洞(MS02-041)
CVE-2002-0716		OpenServer定时服务格式字符串漏洞

Showing top 20 of 350 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2002-0391

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2002-0391

I. Basic Information for CVE-2002-0391

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2002-0391

III. Intelligence Information for CVE-2002-0391

Same Patch Batch · n/a · 2003-04-02 · 350 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2002-0391

Leave a comment