Path Disclosure Vulnerability in Mozilla CVS Query Tool
CVE-2003-0153

Currently unrated

Key Information:

Vendor

Mozilla
Status
Bonsai
Vendor
CVE Published:
2 April 2003

What is CVE-2003-0153?

The Bonsai tool by Mozilla is vulnerable to path disclosure due to improper error handling in specific CGI scripts, including cvslog.cgi, cvsview2.cgi, and multidiff.cgi. When errors occur, the tool unintentionally reveals the absolute pathname of itself in the error message. This exposure can be leveraged by attackers to gain insights into the server's file structure, potentially aiding in further attacks.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://marc.info/?l=bugtraq&m=102980129101054&w=2
mailing-listx_refsource_BUGTRAQ
http://bugzilla.mozilla.org/show_bug.cgi?id=187230
x_refsource_CONFIRM
http://www.debian.org/security/2003/dsa-265
vendor-advisoryx_refsource_DEBIAN

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.