Mozilla Bugzilla 'Bug.create()' WebService Function SQL Injection Vulnerability

Mozilla Bugzilla 'Bug.create()' WebService Function SQL Injection Vulnerability

References:

Bug 515191 - [SECURITY] SQL Injection via Bug.search (CVE-2009-3125) and Bug.c (Mozilla)
3.4.1, 3.2.4, and 3.0.8 Security Advisory (Mozilla)
Bugzilla Homepage (Mozilla)

Privacy Statement
Copyright 2010, SecurityFocus