CVE-2003-0844
The CVE affects mod_gzip 1.3.26.1a and earlier. In debug mode without the Apache log, it allows local users to overwrite arbitrary files via (1) a symlink attack on predictable temporary filenames on Unix, or (2) an NTFS hard link on Windows when the policy to strengthen default permissions is no...