Free and open-source vulnerability scanner

Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.

Install Now

Available for macOS, Windows, and Linux

CVE-2002-0009

Published

22 years ago

Last Modified

15 years ago

CVSSv2.0 Severity

Medium

Impact Analysis

Share on Facebook
Share on LinkedIn
Share on Twitter

show_bug.cgi in Bugzilla before 2.14.1 allows a user with "Bugs Access" privileges to see other products that are not accessible to the user, by submitting a bug and reading the resulting Product pulldown menu..

CVSSv2.0 Score

Severity: Medium
Base Score: 5/10
Exploit Score: 10/10
Access Vector: Network
Access Complexity: Low
Authentication Required: None
Impact Score: 2.9/10
Confidentiality Impact: Partial
Availability Impact: None
Integrity Impact: None

Products Affected

CPE	Affected	Vulnerable	Excluding	Edit
cpe:2.3:a:mozilla:bugzilla::::::::	Yes	-	-

References

http://archives.neohapsis.com/archives/bugtraq/2002-01/0034.html
http://bugzilla.mozilla.org/show_bug.cgi?id=102141
http://www.bugzilla.org/security2_14_1.html
http://rhn.redhat.com/errata/RHSA-2002-001.html
http://www.iss.net/security_center/static/7802.php
http://www.securityfocus.com/bid/3798