CVE-2003-0012 | SynScan

Vulnerability Database

290,206

Total vulnerabilities in the database

CVE-2003-0012

The data collection script for Bugzilla 2.14.x before 2.14.5, 2.16.x before 2.16.2, and 2.17.x before 2.17.3 sets world-writable permissions for the data/mining directory when it runs, which allows local users to modify or delete the data.

Published: Jan 17, 2003
Updated: Apr 13, 2023
CVE: CVE-2003-0012
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 2.1
AV:L/AC:L/Au:N/C:N/I:P/A:N

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
mozilla / bugzilla	2.16.1	2.16.1.x
mozilla / bugzilla	2.17.1	2.17.1.x
mozilla / bugzilla	2.16	2.16.x
mozilla / bugzilla	2.14.2	2.14.2.x
mozilla / bugzilla	2.14.3	2.14.3.x
mozilla / bugzilla	2.14.4	2.14.4.x
mozilla / bugzilla	2.17	2.17.x
mozilla / bugzilla	2.14.1	2.14.1.x
mozilla / bugzilla	2.14	2.14.x