Vulnerabilities > CVE-2002-0761 - Symbolic Link Permissions vulnerability in bzip2 Archive Inherited
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
bzip2 before 1.0.2 in FreeBSD 4.5 and earlier, OpenLinux 3.1 and 3.1.1, and possibly systems, uses the permissions of symbolic links instead of the actual files when creating an archive, which could cause the files to be extracted with less restrictive permissions than intended.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 10 |