Bugzilla Bug Alias Information Disclosure Vulnerability Network Vulnerability

Summary

Bugzilla is prone to an information-disclosure vulnerability. The issue may allow attackers to obtain potentially sensitive information that may aid in other attacks. The issue affects the following: Bugzilla 3.3.2 through 3.4.3 Bugzilla 3.5 through 3.5.1

Solution

Updates are available. Please see the references for details.

References

http://www.bugzilla.org
http://www.bugzilla.org/security/3.4.3/
http://www.securityfocus.com/bid/37062

Updated on 2015-03-25

Severity

Classification

CVE CVE-2009-3386

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:P/I:N/A:N

Related Vulnerabilities

Adobe ColdFusion Multiple Cross Site Scripting Vulnerabilities
Apache Tomcat Login Constraints Security Bypass Vulnerability
Apache ActiveMQ 'Cron Jobs' Cross Site Scripting Vulnerability
A Really Simple Chat Multiple XSS Vulnerabilities
11in1 Cross Site Request Forgery and Local File Include Vulnerabilities

Take action and discover your vulnerabilities