CVE-2003-0153

CVE Database · CVE-2003-0153

CVE-2003-0153

· N/AModified

CVSS v3.1

N/A

EPSS

5.67%

Published

Apr 2, 2003

Modified

Apr 15, 2026

Public PoC / Exploit (1)

All weaponized →

Exploit-DBMozilla Bonsai 1.3 - Full Path Disclosure

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

bonsai Mozilla CVS query tool leaks the absolute pathname of the tool in certain error messages generated by (1) cvslog.cgi, (2) cvsview2.cgi, or (3) multidiff.cgi.

Affected Products (1)

mozilla · bonsaivulnerable

References (10)

http://bugzilla.mozilla.org/show_bug.cgi?id=187230

http://marc.info/?l=bugtraq&m=102980129101054&w=2

http://www.debian.org/security/2003/dsa-265

PatchVendor Advisory

http://www.securityfocus.com/bid/5517

https://exchange.xforce.ibmcloud.com/vulnerabilities/9921