Bugzilla Remote Arbitrary Command Execution Vulnerability
BID:1199
Info
Bugzilla Remote Arbitrary Command Execution Vulnerability
| Bugtraq ID: | 1199 |
| Class: | Input Validation Error |
| CVE: |
CVE-2000-0421 CVE-2001-0329 |
| Remote: | Yes |
| Local: | No |
| Published: | May 11 2000 12:00AM |
| Updated: | Jul 11 2009 01:56AM |
| Credit: | Reported to Bugtraq on May 11, 2000 by Frank van Vliet [email protected] |
| Vulnerable: |
Mozilla Bugzilla 2.10 Mozilla Bugzilla 2.8 Mozilla Bugzilla 2.6 Mozilla Bugzilla 2.4 |
| Not Vulnerable: |
Mozilla Bugzilla 2.14 Mozilla Bugzilla 2.12 |
Exploit / POC
Bugzilla Remote Arbitrary Command Execution Vulnerability
Frank van Vliet <[email protected]> has released the following exploit:
Frank van Vliet <[email protected]> has released the following exploit:
References
Bugzilla Remote Arbitrary Command Execution Vulnerability
References:
References:
- Bugzilla Homepage (Mozilla)
- Remote Vulnerabilities in Bugzilla (@stake)