Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2003-0153

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2003-0153
Last Modified 10 Sep 2008 03:18:07
Published 02 Apr 2003 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2003-0153

Summary

bonsai Mozilla CVS query tool leaks the absolute pathname of the tool in certain error messages generated by (1) cvslog.cgi, (2) cvsview2.cgi, or (3) multidiff.cgi.

Vulnerable Systems

Application

  • Mozilla Bonsai 1.3


References

DEBIAN - DSA-265

XF - bonsai-path-disclosure(9921)

BUGTRAQ - 20020819 Advisory: Bonsai XSS and Physical Path Revealing Vulnerabilities

CONFIRM - http://bugzilla.mozilla.org/show_bug.cgi?id=187230

BID - 5517


Last Updated: 27 May 2016 10:37:48