Symlink Attack Vulnerability in Bugzilla

Symlink Attack Vulnerability in Bugzilla

CVE-2003-0603 · LOW Severity

AV:L/AC:L/AU:N/C:N/I:P/A:N

Bugzilla 2.16.x before 2.16.3, 2.17.x before 2.17.4, and earlier versions allows local users to overwrite arbitrary files via a symlink attack on temporary files that are created in directories with group-writable or world-writable permissions.

Learn more about our User Device Pen Test.