Lucene search
Ubuntu.comUB:CVE-2010-2470HistoryJun 28, 2010 - 12:00 a.m.
CVE-2010-2470
2010-06-2800:00:00
ubuntu.com
ubuntu.com
13
1.9 Low
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:M/Au:N/C:P/I:N/A:N
0.0004 Low
EPSS
Percentile
5.1%
Install/Filesystem.pm in Bugzilla 3.5.1 through 3.6.1 and 3.7 through
3.7.1, when use_suexec is enabled, uses world-readable permissions within
(1) .bzr/ and (2) data/webdot/, which allows local users to obtain
potentially sensitive data by reading files in these directories, a
different vulnerability than CVE-2010-0180.
Bugs
Notes
| Author | Note |
|---|---|
| mdeslaur | only affects 3.5+ |
Related
prion
prion
Design/Logic Flaw
2010-06-28 17:30:00
Design/Logic Flaw
2010-06-28 17:30:00
cve
cve
CVE-2010-2470
2022-10-03 16:21:08
CVE-2010-0180
2022-10-03 16:21:10
nvd
nvd
CVE-2010-2470
2010-06-28 17:30:01
CVE-2010-0180
2010-06-28 17:30:00
cvelist
cvelist
CVE-2010-2470
2022-10-03 16:21:08
CVE-2010-0180
2022-10-03 16:21:10
nessus
nessus
Bugzilla 'time-tracking' fields Information Disclosure
2010-06-30 00:00:00
Bugzilla < 3.2.7 / 3.4.7 / 3.6.1 Multiple Vulnerabilities
2010-06-28 00:00:00
openvas
openvas
Bugzilla 'localconfig' Information Disclosure Vulnerability
2010-07-16 00:00:00
Bugzilla 'localconfig' Information Disclosure Vulnerability
2010-07-16 00:00:00
Bugzilla 'Install/Filesystem.pm' Information Disclosure Vulnerability
2010-07-16 00:00:00
seebug
seebug
Mozilla Bugzilla localconfig文件信息泄露漏洞
2010-06-28 00:00:00
ubuntucve
ubuntucve
CVE-2010-0180
2010-06-28 00:00:00
freebsd
freebsd
bugzilla -- information disclosure
2010-06-24 00:00:00
1.9 Low
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:M/Au:N/C:P/I:N/A:N
0.0004 Low
EPSS
Percentile
5.1%
Related for UB:CVE-2010-2470