Bugzilla 'time-tracking' Information Disclosure Vulnerability Network Vulnerability

Summary

Bugzilla is prone to an information-disclosure vulnerability. Exploits may allow attackers to obtain potentially sensitive information that may aid in other attacks. This issue affects the following: Bugzilla 2.17.1 through 3.2.6 Bugzilla 3.3.1 through 3.4.6 Bugzilla 3.5.1 through 3.6 Bugzilla 3.7

Solution

Updates are available. Please see the references for more information.

References

http://www.bugzilla.org
http://www.bugzilla.org/security/3.2.6/
https://www.securityfocus.com/bid/41141

Updated on 2015-03-25

Severity

Classification

CVE CVE-2010-1204

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:P/I:N/A:N

Related Vulnerabilities

Apache Archiva Cross Site Request Forgery Vulnerability
Adobe Presenter viewer.swf and loadflash.js XSS Vulnerability
Apache Archiva Multiple Vulnerabilities
AbanteCart Multiple Cross-Site Scripting Vulnerabilities
AdaptCMS 'init.php' Remote File Include Vulnerability

Take action and discover your vulnerabilities