Signature Detail

Short Name	HTTP:CGI:BUGZILLA:PRIV-UP
Severity	Low
Recommended	No
Category	HTTP
Keywords	Bugzilla Account Privilege Escalation
Release Date	2003/04/22
Update Number	1213
Supported Platforms	idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

HTTP: Bugzilla Account Privilege Escalation

This signature detects attempts to exploit a known vulnerability in Bugzilla. Versions 2.14 and earlier are vulnerable. Attackers can send a maliciously crafted URL to elevate their Bugzilla account privileges; attackers can use their new status to perform more severe attacks.

Extended Description

Bugzilla is the bug tracking software package by the Mozilla project. It can be configured to run on Microsoft Windows and various Unix/Linux platforms. A vulnerability exists in the buglist.cgi script which may allow a remote attacker to modify the logic of an SQL query. Due to lack of input validation, it is possible to append arbitrary SQL to the WHERE part of a query. This may permit to the attacker to execute commands on the database.

Affected Products

Mozilla Bugzilla 2.10.0
Mozilla Bugzilla 2.12.0
Mozilla Bugzilla 2.14.0
Mozilla Bugzilla 2.4.0
Mozilla Bugzilla 2.6.0
Mozilla Bugzilla 2.8.0

References

BugTraq: 3801
CVE: CVE-2002-0010
URL: http://rhn.redhat.com/errata/RHSA-2002-001.html
URL: http://nvd.nist.gov/nvd.cfm?cvename=CVE-2002-0010
URL: http://www.iss.net/security_center/static/7807.php

Signature Detail

Short Name

Severity

Recommended

Category

Keywords

Release Date

Update Number

Supported Platforms

HTTP: Bugzilla Account Privilege Escalation

Extended Description

Affected Products

References