Unrated severityNVD Advisory· Published Jul 2, 2003· Updated Apr 16, 2026
CVE-2003-0367
CVE-2003-0367
Description
znew in the gzip package allows local users to overwrite arbitrary files via a symlink attack on temporary files.
Affected products
3cpe:2.3:o:debian:debian_linux:2.2:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:debian:debian_linux:2.2:*:*:*:*:*:*:*
- cpe:2.3:o:debian:debian_linux:3.0:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
5- www.debian.org/security/2003/dsa-308nvdPatchThird Party Advisory
- www.openpkg.org/security/OpenPKG-SA-2003.031-gzip.htmlnvdPatchVendor Advisory
- www.turbolinux.com/security/TLSA-2003-38.txtnvdPatchThird Party Advisory
- www.mandriva.com/security/advisoriesnvdThird Party Advisory
- www.securityfocus.com/bid/7872nvdThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.