Bugzilla Multiple Vulnerabilities

Bugzilla is prone to the following vulnerabilities:

1. A security-bypass issue.
2. Multiple information-disclosure vulnerabilities.
3. A denial-of-service vulnerability.

Successfully exploiting these issues may allow an attacker to bypass certain security restrictions, obtain sensitive information, or cause the affected application to crash, denying service to legitimate users.

The following versions are vulnerable:

2.x and 3.2.x versions prior to 3.2.8,
3.3.x and 3.4.x versions prior to 3.4.8.
3.5.x and 3.6.x versions prior to 3.6.2.
3.7.x versions prior to 3.7.3.


Privacy Statement
Copyright 2010, SecurityFocus