7 matches found
Mageia: Security Advisory (MGASA-2014-0412)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Bugzilla < 4.0.15 / 4.2.11 / 4.4.6 / 4.5.6 Multiple Vulnerabilities
Binary data 8606.prm...
Fedora 21 : bugzilla-4.4.6-1.fc21 (2014-12591)
Security fix for CVE-2014-1571, CVE-2014-1572, CVE-2014-1573 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional...
Fedora 20 : bugzilla-4.2.11-1.fc20 (2014-12530)
Security fix for CVE-2014-1571, CVE-2014-1572, CVE-2014-1573 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional...
Fedora Update for bugzilla FEDORA-2014-12530
Check the version of bugzilla SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.868423";...
Fedora Update for bugzilla FEDORA-2014-12584
Check the version of bugzilla SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.868420";...
CVE-2014-1573
CVE-2014-1573 affects Bugzilla before fixes: 2.x–4.0.x before 4.0.15; 4.1.x and 4.2.x before 4.2.11; 4.3.x and 4.4.x before 4.4.6; and 4.5.x before 4.5.6. The issue arises from not ensuring scalar context for certain CGI parameters, enabling remote XSS via a single parameter name receiving three ...