Bugzilla UTF-8 CVE-2012-0448 User Impersonation Vulnerability

Bugzilla UTF-8 CVE-2012-0448 User Impersonation Vulnerability

Bugzilla is prone to a user-impersonation vulnerability because it fails to properly handle email addresses.

An attacker can exploit this issue to impersonate arbitrary users and perform unauthorized actions.

Bugzilla versions prior to 3.4.14, 3.6.8, and 4.0.4 are affected.