CVE-2002-0080

N/A Unknown
Published: March 15, 2002 Modified: April 16, 2026
View on NVD

Description

rsync, when running in daemon mode, does not properly call setgroups before dropping privileges, which could provide supplemental group privileges to local users, who could then read certain files that would otherwise be disallowed.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory
http://www.caldera.com/support/security/advisories/CSSA-2002-014.1.txt
Source: cve@mitre.org
Broken Link
http://www.iss.net/security_center/static/8463.php
Source: cve@mitre.org
Broken Link
http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-024.php3
Source: cve@mitre.org
Broken Link
http://www.redhat.com/support/errata/RHSA-2002-026.html
Source: cve@mitre.org
Patch Third Party Advisory
http://www.securityfocus.com/bid/4285
Source: cve@mitre.org
Third Party Advisory VDB Entry
http://www.caldera.com/support/security/advisories/CSSA-2002-014.1.txt
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link
http://www.iss.net/security_center/static/8463.php
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link
http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-024.php3
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link
http://www.redhat.com/support/errata/RHSA-2002-026.html
Source: af854a3a-2127-422b-91ae-364da2661108
Patch Third Party Advisory
http://www.securityfocus.com/bid/4285
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory VDB Entry

10 reference(s) from NVD

Quick Stats

CVSS v3 Score
N/A / 10.0
Exploitation Status
Not in CISA KEV

Weaknesses (CWE)

CWE-269

Affected Vendors

redhat samba

Related CVEs

CVE-2026-40962 4.9
CVE-2026-40505 3.3
CVE-2026-40504 9.8
CVE-2026-3299 6.4
CVE-2026-40960 8.1