CVE-2002-0048

Published: Feb 18, 2002

Modified: Aug 8, 2024

PUBLISHED

Description

Multiple signedness errors (mixed signed and unsigned numbers) in the I/O functions of rsync 2.4.6, 2.3.2, and other versions allow remote attackers to cause a denial of service and execute arbitrary code in the rsync client or server.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

3958

vdb-entry

x_refsource_BID

20020128 TSLSA-2002-0025 - rsync

mailing-list

x_refsource_BUGTRAQ

ESA-20020125-004

vendor-advisory

x_refsource_ENGARDE

20020127 rsync-2.5.2 has security fix (was: Re: [RHSA-2002:018-05] New rsync packages available)

mailing-list

x_refsource_BUGTRAQ

CLA-2002:458

vendor-advisory

x_refsource_CONECTIVA

VU#800635

third-party-advisory

x_refsource_CERT-VN

DSA-106

vendor-advisory

x_refsource_DEBIAN

SuSE-SA:2002:004

vendor-advisory

x_refsource_SUSE

CSSA-2002-003.0

vendor-advisory

x_refsource_CALDERA

linux-rsync-root-access(7993)

vdb-entry

x_refsource_XF

RHSA-2002:018

vendor-advisory

x_refsource_REDHAT

HPSBTL0201-022

vendor-advisory

x_refsource_HP

MDKSA-2002:009

vendor-advisory

x_refsource_MANDRAKE

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2002-0048

Description

Affected Products

References