CVE-2003-0844
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2003-0844
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
mod_gzip 1.3.26.1a and earlier, and possibly later official versions, when running in debug mode without the Apache log, allows local users to overwrite arbitrary files via (1) a symlink attack on predictable temporary filenames on Unix systems, or (2) an NTFS hard link on Windows systems when the "Strengthen default permissions of internal system objects" policy is not enabled.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
mod_gzip覆盖任意文件漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
当在无Apache日志得调试模式下运行时,mod_gzip 1.3.26.1a以及之前的版本和之后可能的官方版本存在漏洞。当不启用“加强内部系统对象的默认权限”政策时,本地用户借助(1)在UNIX系统上可预见的临时文件名符号连接攻击,或(2)在Windows系统上的NTFS硬链接覆盖任意文件。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2003-0844
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2003-0844
请登录查看更多情报信息。
Same Patch Batch · n/a · 2003-10-09 · 11 CVEs total
| CVE-2003-0839 | Microsoft Windows服务器目录遍历漏洞 | |
| CVE-2003-0840 | HP-UX缓冲区溢出漏洞 | |
| CVE-2003-0841 | PeopleSoft 安全漏洞 | |
| CVE-2003-0842 | mod_gzip基于栈的缓冲区溢出漏洞 | |
| CVE-2003-0843 | mod_gzip格式字符串漏洞 | |
| CVE-2003-0845 | Red Hat JBoss HSQLDB组件SQL注入漏洞 | |
| CVE-2003-0846 | SuSE Linux漏洞 | |
| CVE-2003-0847 | SuSE Linux 漏洞 | |
| CVE-2003-0848 | SLocate User-Supplied数据库堆溢出漏洞 | |
| CVE-2003-0849 | cfengine net.c缓冲区溢出漏洞 |
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-8276
bettercap MySQL Server mysql_server.go integer coercion - CVE-2026-8275
bettercap zerogod IPP Service zerogod_ipp_primitives.go ippR - CVE-2026-8270
Open5GS SMF ogs_nas_parse_qos_rules denial of service - CVE-2026-8269
Open5GS SMF smf_nsmf_handle_create_sm_context denial of serv - CVE-2026-8268
Open5GS SMF OpenAPI_list_create denial of service
V. Comments for CVE-2003-0844
No comments yet