Summary
Bugzilla is prone to an information-disclosure vulnerability.
Exploits may allow attackers to obtain potentially sensitive information that may aid in other attacks.
This issue affects the following:
Bugzilla 2.17.1 through 3.2.6
Bugzilla 3.3.1 through 3.4.6
Bugzilla 3.5.1 through 3.6
Bugzilla 3.7
Solution
Updates are available. Please see the references for more information.
References
Severity
Classification
-
CVE CVE-2010-1204 -
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:P/I:N/A:N
Related Vulnerabilities
- Alt-N WebAdmin Remote Source Code Information Disclosure Vulnerability
- APC PowerChute Network Shutdown HTTP Response Splitting Vulnerability
- Apache Solr XML External Entity(XXE) Vulnerability-01 Jan-14
- Apache Tomcat source.jsp malformed request information disclosure
- Apple Safari Multiple Vulnerabilities