Attacker Value

Unknown

(0 users assessed)

Exploitability

Unknown

(0 users assessed)

User Interaction

None

Privileges Required

None

Attack Vector

Network

0

CVE-2002-0391

Disclosure Date: August 12, 2002 •

CVE-2002-0391 CVSS v3 Base Score: 9.8

MITRE ATT&CK

Add MITRE ATT&CK tactics and techniques that apply to this CVE.

Description

Integer overflow in xdr_array function in RPC servers for operating systems that use libc, glibc, or other code based on SunRPC including dietlibc, allows remote attackers to execute arbitrary code by passing a large number of arguments to xdr_array through RPC services such as rpc.cmsd and dmispd.

Add Assessment

No one has assessed this topic. Be the first to add your voice to the community.

CVSS V3 Severity and Metrics

Data provided by the National Vulnerability Database (NVD)

Base Score:

9.8 Critical

Impact Score:

5.9

Exploitability Score:

3.9

Vector:

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector (AV):

Network

Attack Complexity (AC):

Low

Privileges Required (PR):

None

User Interaction (UI):

None

Scope (S):

Unchanged

Confidentiality (C):

High

Integrity (I):

High

Availability (A):

High

Vendors

Products

Weaknesses

CWE-190

References

Canonical

CVE-2002-0391 (https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-0391)

BID-5356 (http://www.securityfocus.com/bid/5356)

Advisory

XF-sunrpc-xdr-array-bo(9170) (http://www.iss.net/security_center/static/9170.php)

CA-2002-25 (http://www.cert.org/advisories/CA-2002-25.html)

HPSBTL0208-061 (http://online.securityfocus.com/advisories/4402)

20020909 GLSA: glibc (http://marc.info?l=bugtraq&m=103158632831416&w=2)

DSA-146 (http://www.debian.org/security/2002/dsa-146)

http://rhn.redhat.com/errata/RHSA-2002-166.html

HPSBUX0209-215 (http://archives.neohapsis.com/archives/hp/2002-q3/0077.html)

DSA-143 (http://www.debian.org/security/2002/dsa-143)

http://www.redhat.com/support/errata/RHSA-2003-212.html

MS02-057 (https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-057)

DSA-142 (http://www.debian.org/security/2002/dsa-142)

IY34194 (http://archives.neohapsis.com/archives/aix/2002-q4/0002.html)

http://www.redhat.com/support/errata/RHSA-2002-167.html

20020803 OpenAFS Security Advisory 2002-001: Remote root vulnerability in OpenAFS servers (http://archives.neohapsis.com/archives/bugtraq/2002-07/0514.html)

http://www.redhat.com/support/errata/RHSA-2002-173.html

20020802 kerberos rpc xdr_array (http://online.securityfocus.com/archive/1/285740)

20020731 Remote Buffer Overflow Vulnerability in Sun RPC (http://marc.info?l=bugtraq&m=102813809232532&w=2)

20020801 RPC analysis (http://marc.info?l=bugtraq&m=102821785316087&w=2)

VU#192995 (http://www.kb.cert.org/vuls/id/192995)

http://rhn.redhat.com/errata/RHSA-2002-172.html

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A4728

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A42

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9

DSA-149 (http://www.debian.org/security/2002/dsa-149)

20020802 MITKRB5-SA-2002-001: Remote root vulnerability in MIT krb5 admin (http://marc.info?l=bugtraq&m=102831443208382&w=2)

DSA-333 (http://www.debian.org/security/2003/dsa-333)

http://www.redhat.com/support/errata/RHSA-2003-168.html

Miscellaneous

20020731 Remote Buffer Overflow Vulnerability in Sun RPC (http://bvlive01.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=20823)

http://distro.conectiva.com.br/atualizacoes?id=a&anuncio=000515

http://distro.conectiva.com.br/atualizacoes?id=a&anuncio=000535

http://marc.info?l=bugtraq&m=102821928418261&w=2

ESA-20021003-021 (http://www.linuxsecurity.com/advisories/other_advisory-2399.html)

http://www.mandrakesoft.com/security/advisories?name=MDKSA-2002:057

Rapid7

Technical Analysis