CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2002-0759

bzip2 before 1.0.2 in FreeBSD 4.5 and earlier, OpenLinux 3.1 and 3.1.1, and possibly other operating systems, does not use the O_EXCL flag to create files during decompression and does not warn the user if an existing file would be overwritten, which could allow attackers to overwrite files via a bzip2 archive.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 63.4%

CVSS Severity

CVSS v2 Score 5.0

References

Products affected by CVE-2002-0759

Bzip » Bzip2 » Version: 0.9.0

cpe:2.3:a:bzip:bzip2:0.9.0
Bzip » Bzip2 » Version: 0.9.0a

cpe:2.3:a:bzip:bzip2:0.9.0a
Bzip » Bzip2 » Version: 0.9.0b

cpe:2.3:a:bzip:bzip2:0.9.0b
Bzip » Bzip2 » Version: 0.9.0c

cpe:2.3:a:bzip:bzip2:0.9.0c
Bzip » Bzip2 » Version: 0.9.5a

cpe:2.3:a:bzip:bzip2:0.9.5a
Bzip » Bzip2 » Version: 0.9.5b

cpe:2.3:a:bzip:bzip2:0.9.5b
Bzip » Bzip2 » Version: 0.9.5c

cpe:2.3:a:bzip:bzip2:0.9.5c
Bzip » Bzip2 » Version: 0.9.5d

cpe:2.3:a:bzip:bzip2:0.9.5d
Bzip » Bzip2 » Version: 1.0

cpe:2.3:a:bzip:bzip2:1.0
Bzip » Bzip2 » Version: 1.0.1

cpe:2.3:a:bzip:bzip2:1.0.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2002-0759

Products

Pricing

Contact Us