Vulnerability Name:

CVE-2003-0603 (CCN-11867)

Assigned:2003-04-25
Published:2003-04-25
Updated:2008-09-05
Summary:Bugzilla 2.16.x before 2.16.3, 2.17.x before 2.17.4, and earlier versions allows local users to overwrite arbitrary files via a symlink attack on temporary files that are created in directories with group-writable or world-writable permissions.
CVSS v3 Severity:4.0 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L)
Exploitability Metrics:Attack Vector (AV): Local
Attack Complexity (AC): High
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): Low
Availibility (A): Low
CVSS v2 Severity:2.1 Low (CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:P/A:N)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): Partial
Availibility (A): None
2.6 Low (CCN CVSS v2 Vector: AV:L/AC:H/Au:N/C:N/I:P/A:P)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): High
Athentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): Partial
Availibility (A): Partial
Vulnerability Type:CWE-Other
Vulnerability Consequences:File Manipulation
References:Source: CCN
Type: BugTraq Mailing List, Fri Apr 25 2003 - 03:40:33 CDT
XSS, insecure temporary filenames

Source: CCN
Type: Bugzilla Bug 197153
potential symlink attack vulnerability in showdependancygraph.cgi and GenerateVersionTable

Source: MITRE
Type: CNA
CVE-2003-0603

Source: CONECTIVA
Type: Vendor Advisory
CLA-2003:653

Source: CCN
Type: Conectiva Linux Security Announcement CLSA-2003:653
bugzilla

Source: CONFIRM
Type: UNKNOWN
http://www.bugzilla.org/security/2.16.2/

Source: CCN
Type: OSVDB ID: 6348
Bugzilla showdependencygraph.cgi Symlink Arbitrary File Overwrite

Source: CCN
Type: OSVDB ID: 6383
Bugzilla globals.pl Symlink Arbitrary File Overwrite

Source: CCN
Type: OSVDB ID: 6384
Bugzilla defparams.pl Symlink Arbitrary File Overwrite

Source: CCN
Type: OSVDB ID: 6385
Bugzilla checksetup.pl Symlink Arbitrary File Overwrite

Source: BID
Type: Patch, Vendor Advisory
7412

Source: CCN
Type: BID-7412
Bugzilla Insecure Temporary File Handling Vulnerabilities

Source: XF
Type: UNKNOWN
bugzilla-tmpfile-symlink(11867)

Vulnerable Configuration:Configuration 1:
  • cpe:/a:mozilla:bugzilla:2.10:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:bugzilla:2.12:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:bugzilla:2.14:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:bugzilla:2.14.1:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:bugzilla:2.14.2:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:bugzilla:2.14.3:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:bugzilla:2.14.4:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:bugzilla:2.14.5:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:bugzilla:2.16:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:bugzilla:2.16.1:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:bugzilla:2.16.2:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:bugzilla:2.17:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:bugzilla:2.17.1:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:bugzilla:2.17.3:*:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/a:mozilla:bugzilla:2.10:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:bugzilla:2.16.2:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:bugzilla:2.17.3:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:bugzilla:2.12:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:bugzilla:2.14:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:bugzilla:2.14.1:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:bugzilla:2.14.2:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:bugzilla:2.14.3:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:bugzilla:2.14.4:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:bugzilla:2.14.5:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:bugzilla:2.16:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:bugzilla:2.16.1:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:bugzilla:2.17:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:bugzilla:2.17.1:*:*:*:*:*:*:*
  • AND
  • cpe:/o:conectiva:linux:9.0:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    BACK
    mozilla bugzilla 2.10
    mozilla bugzilla 2.12
    mozilla bugzilla 2.14
    mozilla bugzilla 2.14.1
    mozilla bugzilla 2.14.2
    mozilla bugzilla 2.14.3
    mozilla bugzilla 2.14.4
    mozilla bugzilla 2.14.5
    mozilla bugzilla 2.16
    mozilla bugzilla 2.16.1
    mozilla bugzilla 2.16.2
    mozilla bugzilla 2.17
    mozilla bugzilla 2.17.1
    mozilla bugzilla 2.17.3
    mozilla bugzilla 2.10
    mozilla bugzilla 2.16.2
    mozilla bugzilla 2.17.3
    mozilla bugzilla 2.12
    mozilla bugzilla 2.14
    mozilla bugzilla 2.14.1
    mozilla bugzilla 2.14.2
    mozilla bugzilla 2.14.3
    mozilla bugzilla 2.14.4
    mozilla bugzilla 2.14.5
    mozilla bugzilla 2.16
    mozilla bugzilla 2.16.1
    mozilla bugzilla 2.17
    mozilla bugzilla 2.17.1
    conectiva linux 9.0