CVE-2002-0048

Published Feb 27, 2002

Last updated 8 years ago

Overview

Description: Multiple signedness errors (mixed signed and unsigned numbers) in the I/O functions of rsync 2.4.6, 2.3.2, and other versions allow remote attackers to cause a denial of service and execute arbitrary code in the rsync client or server.
Source: cve@mitre.org
NVD status: Modified

Hype score: Not currently trending

Risk scores

CVSS 2.0

Type: Primary
Base score: 10
Impact score: 10
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:C/I:C/A:C

Weaknesses

nvd@nist.gov: NVD-CWE-Other

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:andrew_tridgell:rsync:2.3.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "138253E8-6342-4A88-89E6-B579782BC273"
          },
          {
            "criteria": "cpe:2.3:a:andrew_tridgell:rsync:2.3.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "06A95770-7838-4D26-98BD-F3C0A264C431"
          },
          {
            "criteria": "cpe:2.3:a:andrew_tridgell:rsync:2.3.2_1.2:*:alpha:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C698EF8A-7EAE-4F23-87FD-57D143759BA5"
          },
          {
            "criteria": "cpe:2.3:a:andrew_tridgell:rsync:2.3.2_1.2:*:arm:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "10E06CAF-D555-46E4-A39B-D1C230E34CE4"
          },
          {
            "criteria": "cpe:2.3:a:andrew_tridgell:rsync:2.3.2_1.2:*:intel:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CE361EF1-4FC5-4E0B-AC04-F7D46CBC46F0"
          },
          {
            "criteria": "cpe:2.3:a:andrew_tridgell:rsync:2.3.2_1.2:*:m68k:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "542C7579-F7FE-4D66-9C39-4C89B502614F"
          },
          {
            "criteria": "cpe:2.3:a:andrew_tridgell:rsync:2.3.2_1.2:*:ppc:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A08984C1-C94B-44E7-BF5A-2C4FB74A448E"
          },
          {
            "criteria": "cpe:2.3:a:andrew_tridgell:rsync:2.3.2_1.2:*:sparc:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A289538D-27D6-430B-ABE4-A2D332491313"
          },
          {
            "criteria": "cpe:2.3:a:andrew_tridgell:rsync:2.4.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "41681E68-E4D3-4466-8BAF-12F38D670C73"
          },
          {
            "criteria": "cpe:2.3:a:andrew_tridgell:rsync:2.4.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9C472D33-56FC-4939-A800-00C319D44D45"
          },
          {
            "criteria": "cpe:2.3:a:andrew_tridgell:rsync:2.4.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D57C7AF3-A648-44E3-9ABF-D546B34BDC02"
          },
          {
            "criteria": "cpe:2.3:a:andrew_tridgell:rsync:2.4.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FC163657-8FD5-4578-8452-49ABAA1121D5"
          },
          {
            "criteria": "cpe:2.3:a:andrew_tridgell:rsync:2.5.0_1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "734ABECE-06D5-43D7-96DD-9429BCAC3FB8"
          },
          {
            "criteria": "cpe:2.3:a:andrew_tridgell:rsync:2.5.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "502E8AC0-7293-41A0-BA17-873DEE5133DB"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Social media

Risk scores

CVSS 2.0

Weaknesses

Configurations

References