cbcvebase.
CVE-2002-0761
published 2002-08-12

CVE-2002-0761: bzip2 before 1.0.2 in FreeBSD 4.5 and earlier, OpenLinux 3.1 and 3.1.1, and possibly systems, uses the permissions of symbolic links instead of the actual…

PriorityP46low2.1CVSS 2.0
AVLACLAuNCPINAN
EPSS
0.39%
30.5th percentile
bzip2 before 1.0.2 in FreeBSD 4.5 and earlier, OpenLinux 3.1 and 3.1.1, and possibly systems, uses the permissions of symbolic links instead of the actual files when creating an archive, which could cause the files to be extracted with less restrictive permissions than intended.

Affected

10 ranges
VendorProductVersion rangeFixed in
bzipbzip2
bzipbzip2
bzipbzip2
bzipbzip2
bzipbzip2
bzipbzip2
bzipbzip2
bzipbzip2
bzipbzip2
bzipbzip2
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.