CVE-2003-0381
noweb - insecure temporary files
EPSS 0.11%
Description
Multiple vulnerabilities in noweb 2.9 and earlier creates temporary files insecurely, which allows local users to overwrite arbitrary files via multiple vectors including the noroff script.
How to fix CVE-2003-0381
To remediate CVE-2003-0381, upgrade the affected package to a fixed version below.
- Debian/noweb—upgrade to 2.10c-3.1 or later
- Debian/noweb—upgrade to 2.9a-7.3 or later
Is CVE-2003-0381 being exploited?
Low — EPSS is 0.1%, meaning exploitation activity has not been observed at scale.
Affected packages (2)
- from 0, < 2.10c-3.1
- from 0, < 2.9a-7.3