Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusTenable5585.PRM
HistoryJun 28, 2010 - 12:00 a.m.

Bugzilla < 3.2.7 / 3.4.7 / 3.6.1 Multiple Vulnerabilities

2010-06-2800:00:00
Tenable
www.tenable.com
7

5 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.003 Low

EPSS

Percentile

71.8%

JSON

The remote web server is hosting Bugzilla, a web-based bug tracking application.

Versions of Bugzilla earlier than 3.2.7, 3.4.x earlier than 3.4.7, and 3.6.x earlier than 3.6.1 are potentially affected by multiple vulnerabilities :

  • It is possible to determine time-tracking information for bugs through specially crafted search URLs. (CVE-2010-1204)

  • If ‘$use_suexec’ is set to ‘1’ in the localconfig file, the localconfig file’s permissions were set as world-readable by checksetup.pl. (CVE-2010-0180)

Binary data 5585.prm
VendorProductVersionCPE
mozillabugzillacpe:/a:mozilla:bugzilla

Related

openvas 20
nessus 6
freebsd 1
prion 3
fedora 7
cvelist 3
seebug 2
nvd 3
ubuntucve 3
cve 3
openvas
openvas
FreeBSD Ports: bugzilla
2010-07-22 00:00:00
FreeBSD Ports: bugzilla
2010-07-22 00:00:00
Bugzilla 'localconfig' Information Disclosure Vulnerability
2010-07-16 00:00:00
nessus
nessus
FreeBSD : bugzilla -- information disclosure (f1331504-8849-11df-89b8-00151735203a)
2010-07-06 00:00:00
Bugzilla 'time-tracking' fields Information Disclosure
2010-06-30 00:00:00
Fedora 13 : bugzilla-3.4.7-2.fc13 (2010-10669)
2010-07-08 00:00:00
freebsd
freebsd
bugzilla -- information disclosure
2010-06-24 00:00:00
prion
prion
Design/Logic Flaw
2010-06-28 17:30:00
Design/Logic Flaw
2010-06-28 17:30:00
Design/Logic Flaw
2010-06-28 17:30:00
fedora
fedora
[SECURITY] Fedora 13 Update: bugzilla-3.4.7-2.fc13
2010-07-07 17:38:54
[SECURITY] Fedora 13 Update: bugzilla-3.4.10-1.fc13
2011-02-02 19:36:07
[SECURITY] Fedora 13 Update: bugzilla-3.4.9-1.fc13
2010-11-14 21:28:33
cvelist
cvelist
CVE-2010-1204
2022-10-03 16:21:01
CVE-2010-0180
2022-10-03 16:21:10
CVE-2010-2470
2022-10-03 16:21:08
seebug
seebug
Mozilla Bugzilla时间追踪功能信息泄露漏洞
2010-06-28 00:00:00
Mozilla Bugzilla localconfig文件信息泄露漏洞
2010-06-28 00:00:00
nvd
nvd
CVE-2010-1204
2010-06-28 17:30:01
CVE-2010-0180
2010-06-28 17:30:00
CVE-2010-2470
2010-06-28 17:30:01
ubuntucve
ubuntucve
CVE-2010-0180
2010-06-28 00:00:00
CVE-2010-1204
2010-06-28 00:00:00
CVE-2010-2470
2010-06-28 00:00:00
cve
cve
CVE-2010-1204
2022-10-03 16:21:01
CVE-2010-0180
2022-10-03 16:21:10
CVE-2010-2470
2022-10-03 16:21:08

5 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.003 Low

EPSS

Percentile

71.8%

JSON
Related for 5585.PRM
openvas20nessus6freebsd1prion3fedora7cvelist3seebug2nvd3ubuntucve3cve3