← back
CVE-2002-0009

CVE-2002-0009

EPSS 1.2%
show_bug.cgi in Bugzilla before 2.14.1 allows a user with "Bugs Access" privileges to see other products that are not accessible to the user, by submitting a bug and reading the resulting Product pulldown menu.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://archives.neohapsis.com/archives/bugtraq/2002-01/0034.htmlhttp://bugzilla.mozilla.org/show_bug.cgi?id=102141http://rhn.redhat.com/errata/RHSA-2002-001.htmlhttp://www.bugzilla.org/security2_14_1.htmlhttp://www.iss.net/security_center/static/7802.phphttp://www.securityfocus.com/bid/3798