Unrated severityNVD Advisory· Published Jan 17, 2003· Updated Jun 16, 2026
CVE-2003-0013
CVE-2003-0013
Description
The default .htaccess scripts for Bugzilla 2.14.x before 2.14.5, 2.16.x before 2.16.2, and 2.17.x before 2.17.3 do not include filenames for backup copies of the localconfig file that are made from editors such as vi and Emacs, which could allow remote attackers to obtain a database password by directly accessing the backup file.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
10cpe:2.3:a:mozilla:bugzilla:2.14:*:*:*:*:*:*:*+ 8 more
- cpe:2.3:a:mozilla:bugzilla:2.14:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:bugzilla:2.14.1:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:bugzilla:2.14.2:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:bugzilla:2.14.3:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:bugzilla:2.14.4:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:bugzilla:2.16:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:bugzilla:2.16.1:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:bugzilla:2.17:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:bugzilla:2.17.1:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
5- www.debian.org/security/2003/dsa-230nvdPatchVendor Advisory
- marc.infonvd
- www.iss.net/security_center/static/10970.phpnvd
- www.osvdb.org/6351nvd
- www.securityfocus.com/bid/6501nvd
News mentions
0No linked articles in our index yet.