Back to search
CVE-2002-0759
Published: Apr 2, 2003
Modified: Aug 8, 2024
PUBLISHED
Description
bzip2 before 1.0.2 in FreeBSD 4.5 and earlier, OpenLinux 3.1 and 3.1.1, and possibly other operating systems, does not use the O_EXCL flag to create files during decompression and does not warn the user if an existing file would be overwritten, which could allow attackers to overwrite files via a bzip2 archive.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
bzip2-decompression-file-overwrite(9126)
vdb-entry
x_refsource_XF
4774
vdb-entry
x_refsource_BID
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now