Multiple vulnerabilities are reported to exist in the Bugzilla software. The issues include cross-site scripting, SQL injection, privilege escalation, and information disclosure. An information disclosure vulnerability is reported to affect Bugzilla installations under certain circumstances. It is reported that when the SQL server is halted, and the HTTP server continues to run, a remote attacker may disclosure the database password. An attacker, may employ the harvested password information to authenticate to the SQL database. A privilege escalation vulnerability is reported to affect Bugzilla. A privileged attacker may exploit this vulnerability to gain membership to other Bugzilla groups. An additional information disclosure vulnerability is reported to affect Bugzilla. It is reported that hidden products may be revealed using vulnerable CGI scripts. An attacker may employ the vulnerable scripts in order to disclose product listings that are marked as confidential. Bugzilla is...
Multiple vulnerabilities are reported to exist in the Bugzilla software. The issues include cross-site scripting, SQL injection, privilege escalation, and information disclosure. An information disclosure vulnerability is reported to affect Bugzilla installations under certain circumstances. It is reported that when the SQL server is halted, and the HTTP server continues to run, a remote attacker may disclosure the database password. An attacker, may employ the harvested password information to authenticate to the SQL database. A privilege escalation vulnerability is reported to affect Bugzilla. A privileged attacker may exploit this vulnerability to gain membership to other Bugzilla groups. An additional information disclosure vulnerability is reported to affect Bugzilla. It is reported that hidden products may be revealed using vulnerable CGI scripts. An attacker may employ the vulnerable scripts in order to disclose product listings that are marked as confidential. Bugzilla is reported prone to multiple cross-site scripting vulnerabilities. These issues exist due to a lack of sanitization performed on user supplied URI data before this data is incorporated into dynamically generated error messages. These cross-site scripting issues could permit a remote attacker to create a malicious URI link that includes hostile HTML and script code. If a user follows the malicious link, the attacker-supplied code executes in the web browser of the victim computer. An additional information disclosure vulnerability is reported to affect Bugzilla. It is reported that a Bugzilla user's password may be embedded as a part of an image URI, the password may be saved into and be visible in web server or web proxy logs. An attacker who has access to the web server logs may harvest credentials. Finally, Bugzilla is reported prone to an SQL injection vulnerability. The issue is due to a failure of the application to properly sanitize user-supplied input. As a result of this issue a privileged attacker could modify the logic and structure of database queries.
