CVE-2003-0156 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2003-0156

CWE

https://cwe.mitre.org/data/definitions/NVD-Other.html

Directory traversal vulnerability in Cross-Referencing Linux (LXR) allows remote attackers to read arbitrary files via .. (dot dot) sequences in the v parameter.

Affected Software

Name	Vendor	Start Version	End Version
Lxr	Cross_referencer	0.3 (including)	0.3 (including)
Lxr	Cross_referencer	0.8 (including)	0.8 (including)
Lxr	Cross_referencer	0.9 (including)	0.9 (including)
Lxr	Cross_referencer	0.9.1 (including)	0.9.1 (including)
Lxr	Cross_referencer	0.9.2 (including)	0.9.2 (including)

References

http://marc.info/?l=bugtraq\u0026m=104739747222492\u0026w=2
http://www.debian.org/security/2003/dsa-264
http://www.securityfocus.com/bid/7062