Lucene search
Ubuntu.comUB:CVE-2005-2173HistoryJul 08, 2005 - 12:00 a.m.
CVE-2005-2173
2005-07-0800:00:00
ubuntu.com
ubuntu.com
10
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
0.001 Low
EPSS
Percentile
42.2%
The Flag::validate and Flag::modify functions in Bugzilla 2.17.1 to 2.18.1
and 2.19.1 to 2.19.3 do not verify that the flag ID is appropriate for the
given bug or attachment ID, which allows users to change flags on arbitrary
bugs and obtain a bug summary via process_bug.cgi.
Related
cve
cve
CVE-2005-2173
2005-07-08 04:00:00
cvelist
cvelist
CVE-2005-2173
2005-07-08 04:00:00
nvd
nvd
CVE-2005-2173
2005-07-08 04:00:00
nessus
nessus
Bugzilla <= 2.18.1 / 2.19.3 Multiple Vulnerabilities (ID, more)
2005-07-08 00:00:00
GLSA-200507-12 : Bugzilla: Unauthorized access and information disclosure
2005-07-14 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200507-12 (bugzilla)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200507-12 (bugzilla)
2008-09-24 00:00:00
FreeBSD Ports: bugzilla, ja-bugzilla
2008-09-04 00:00:00
gentoo
gentoo
Bugzilla: Unauthorized access and information disclosure
2005-07-13 00:00:00
freebsd
freebsd
bugzilla -- multiple vulnerabilities
2005-07-07 00:00:00
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
0.001 Low
EPSS
Percentile
42.2%
Related for UB:CVE-2005-2173