CVE-2003-0153

Description

bonsai Mozilla CVS query tool leaks the absolute pathname of the tool in certain error messages generated by (1) cvslog.cgi, (2) cvsview2.cgi, or (3) multidiff.cgi.

Affected products

Mozilla / bonsai1.3 – 1.3

References

MAILING_LISThttp://marc.info/?l=bugtraq&m=102980129101054&w=2
MISChttp://bugzilla.mozilla.org/show_bug.cgi?id=187230
VENDOR_ADVISORYhttp://www.debian.org/security/2003/dsa-265
MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/9921
MISChttp://www.securityfocus.com/bid/5517