{"id": "CVE-2002-0007", "bulletinFamily": "NVD", "title": "CVE-2002-0007", "description": "CGI.pl in Bugzilla before 2.14.1, when using LDAP, allows remote attackers to obtain an anonymous bind to the LDAP server via a request that does not include a password, which causes a null password to be sent to the LDAP server.", "published": "2002-01-31T05:00:00", "modified": "2017-10-10T01:30:00", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2002-0007", "reporter": "cve@mitre.org", "references": ["http://www.bugzilla.org/security2_14_1.html", "http://rhn.redhat.com/errata/RHSA-2002-001.html", "https://exchange.xforce.ibmcloud.com/vulnerabilities/7812", "http://archives.neohapsis.com/archives/bugtraq/2002-01/0034.html", "http://bugzilla.mozilla.org/show_bug.cgi?id=54901", "http://www.securityfocus.com/bid/3792"], "cvelist": ["CVE-2002-0007"], "type": "cve", "lastseen": "2019-05-29T18:07:38", "history": [], "edition": 1, "hashmap": [{"key": "affectedSoftware", "hash": "207701a3d9c223335e97e31d802a7288"}, {"key": "bulletinFamily", "hash": "601892ece72be3be2f57266ca2354792"}, {"key": "cpe", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cpe23", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvelist", "hash": "1a677248c72058bc6c1a673c690b0cf2"}, {"key": "cvss", "hash": "edfca85c4c320ffaa9dcfdcb6a20ce1d"}, {"key": "cvss2", "hash": "11e56c2d8f36b1920223217250e3f2a6"}, {"key": "cvss3", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cwe", "hash": "78a7a5cbaf09985c14389298e454e7db"}, {"key": "description", "hash": "b44d457e7e3d94e0d52e3f48f024da14"}, {"key": "href", "hash": "963a69a911d1d1f73d6dd13ae9849949"}, {"key": "modified", "hash": "8fb0f78ba2f86384079c6a08edb3203e"}, {"key": "published", "hash": "6ba0ac89de5918ad30e520845daaf285"}, {"key": "references", "hash": "cf28235ff14ab0b011e3712fc58300b9"}, {"key": "reporter", "hash": "444c2b4dda4a55437faa8bef1a141e84"}, {"key": "title", "hash": "93622fc0865ee88a1f26596e9c935eb5"}, {"key": "type", "hash": "1716b5fcbb7121af74efdc153d0166c5"}], "hash": "b9795c308598b33242e041fadbf9321a0b004e3f577d77e63e416f641b217dd1", "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "osvdb", "idList": ["OSVDB:5422"]}], "modified": "2019-05-29T18:07:38"}, "score": {"value": 5.6, "vector": "NONE", "modified": "2019-05-29T18:07:38"}, "vulnersScore": 5.6}, "objectVersion": "1.3", "cpe": [], "affectedSoftware": [{"name": "mozilla bugzilla", "operator": "le", "version": "2.14.1"}], "cvss2": {"cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 10.0, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 10.0, "obtainAllPrivilege": true, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "HIGH", "userInteractionRequired": false}, "cvss3": {}, "cpe23": [], "cwe": ["NVD-CWE-Other"]}

{"osvdb": [{"lastseen": "2017-04-28T13:20:00", "bulletinFamily": "software", "description": "# No description provided by the source\n\n## References:\n[Vendor Specific Advisory URL](http://bugzilla.mozilla.org/show_bug.cgi?id=54901)\n[Vendor Specific Advisory URL](http://www.bugzilla.org/security/2.14.1/)\nISS X-Force ID: 7812\n[CVE-2002-0007](https://vulners.com/cve/CVE-2002-0007)\nBugtraq ID: 3792\n", "modified": "2004-04-08T23:12:35", "published": "2004-04-08T23:12:35", "href": "https://vulners.com/osvdb/OSVDB:5422", "id": "OSVDB:5422", "title": "Bugzilla CGI.pl Null Password LDAP Session", "type": "osvdb", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}]}