6 matches found
EUVD-2002-0800
Malware in sbrugna...
CVE-2001-1406
CVE-2001-1406 affects Bugzilla prior to 2.14. The vulnerability occurs when moving a bug between product groups, where the groupset flag is not updated, causing the bug to retain the old group’s (potentially less stringent) restrictions. This is a local issue with low public impact per the CVSS v...
CVE-2001-1406
processbug.cgi in Bugzilla before 2.14 does not set the "groupset" bit when a bug is moved between product groups, which will cause the bug to have the old group's restrictions, which might not be as stringent...
CVE-2002-0808
Bugzilla 2.14 before 2.14.2, and 2.16 before 2.16rc2, when performing a mass change, sets the groupset of all bugs to the groupset of the first bug, which could inadvertently cause insecure groupset permissions to be assigned to some bugs...
CVE-2002-0808
Bugzilla 2.14 before 2.14.2 and 2.16 before 2.16rc2 suffers a mass-change bug that resets the groupset of all bugs to the groupset of the first bug, potentially yielding insecure groupset permissions on some bugs. Affected components: Bugzilla mass-update logic affecting bug groupsets. Root cause...
CVE-2002-0808
Bugzilla 2.14 before 2.14.2, and 2.16 before 2.16rc2, when performing a mass change, sets the groupset of all bugs to the groupset of the first bug, which could inadvertently cause insecure groupset permissions to be assigned to some bugs...