Lucene search

Ubuntu.comUB:CVE-2005-1564

HistoryMay 12, 2005 - 12:00 a.m.

CVE-2005-1564

2005-05-1200:00:00

ubuntu.com

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.007 Low

EPSS

Percentile

79.3%

JSON

post_bug.cgi in Bugzilla 2.10 through 2.18, 2.19.1, and 2.19.2 allows
remote authenticated users to “enter bugs into products that are closed for
bug entry” by modifying the URL to specify the name of the product.

References

launchpad.net/bugs/cve/CVE-2005-1564

nvd.nist.gov/vuln/detail/CVE-2005-1564

security-tracker.debian.org/tracker/CVE-2005-1564

www.cve.org/CVERecord?id=CVE-2005-1564

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.007 Low

EPSS

Percentile

79.3%

JSON

Related for UB:CVE-2005-1564