Lucene search
Ubuntu.comUB:CVE-2009-1213HistoryApr 01, 2009 - 12:00 a.m.
CVE-2009-1213
2009-04-0100:00:00
ubuntu.com
ubuntu.com
8
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.003 Low
EPSS
Percentile
71.6%
Cross-site request forgery (CSRF) vulnerability in attachment.cgi in
Bugzilla 3.2 before 3.2.3, 3.3 before 3.3.4, and earlier versions allows
remote attackers to hijack the authentication of arbitrary users for
requests that use attachment editing.
Related
nessus
nessus
Fedora 10 : bugzilla-3.2.3-1.fc10 (2009-3410)
2009-04-23 00:00:00
Fedora 9 : bugzilla-3.2.3-1.fc9 (2009-3405)
2009-04-08 00:00:00
GLSA-201006-19 : Bugzilla: Multiple vulnerabilities
2010-06-04 00:00:00
openvas
openvas
Fedora Core 10 FEDORA-2009-7669 (bugzilla)
2009-07-29 00:00:00
Fedora Core 10 FEDORA-2009-7669 (bugzilla)
2009-07-29 00:00:00
Bugzilla 'attachment.cgi' Cross Site Request Forgery Vulnerability
2009-03-31 00:00:00
fedora
fedora
[SECURITY] Fedora 10 Update: bugzilla-3.2.3-1.fc10
2009-04-07 15:49:33
[SECURITY] Fedora 10 Update: bugzilla-3.2.4-1.fc10
2009-07-28 18:24:48
[SECURITY] Fedora 9 Update: bugzilla-3.2.3-1.fc9
2009-04-07 15:48:59
cvelist
cvelist
CVE-2009-1213
2009-04-01 10:00:00
prion
prion
Cross site request forgery (csrf)
2009-04-01 10:30:00
nvd
nvd
CVE-2009-1213
2009-04-01 10:30:00
seebug
seebug
Bugzilla attachment.cgiθ·¨η«θ―·ζ±δΌͺι ζΌζ΄
2009-04-02 00:00:00
cve
cve
CVE-2009-1213
2009-04-01 10:30:00
gentoo
gentoo
Bugzilla: Multiple vulnerabilities
2010-06-04 00:00:00
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.003 Low
EPSS
Percentile
71.6%
Related for UB:CVE-2009-1213