Mozilla Bugzilla 'Bug.search()' WebService Function SQL Injection Vulnerability
|
Bugtraq ID:
|
36371
|
|
Class:
|
Input Validation Error
|
|
CVE:
|
CVE-2009-3125
|
|
Remote:
|
Yes
|
|
Local:
|
No
|
|
Published:
|
Sep 11 2009 12:00AM
|
|
Updated:
|
Jun 04 2010 08:40PM
|
|
Credit:
|
Max Kanat-Alexander
|
|
Vulnerable:
|
Red Hat Fedora 11
Red Hat Fedora 10
Mozilla Bugzilla 3.4.1
Mozilla Bugzilla 3.3.4
Mozilla Bugzilla 3.3.3
Mozilla Bugzilla 3.3.2
Mozilla Bugzilla 3.5
Mozilla Bugzilla 3.4 rc1
Mozilla Bugzilla 3.4
Gentoo Linux
|
|
|
|
Not Vulnerable:
|
Mozilla Bugzilla 3.4.2
|
|
