Lucene search

MitreCVE-2010-2759

HistoryAug 16, 2010 - 3:14 p.m.

CVE-2010-2759

2010-08-1615:14:12

CWE-189

mitre

web.nvd.nist.gov

bugzilla

postgresql

integer handling

vulnerability

cve-2010-2759

nvd

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:N/I:N/A:P

AI Score

Confidence

Low

EPSS

0.013

Percentile

85.6%

JSON

Bugzilla 2.23.1 through 3.2.7, 3.3.1 through 3.4.7, 3.5.1 through 3.6.1, and 3.7 through 3.7.2, when PostgreSQL is used, does not properly handle large integers in (1) bug and (2) attachment phrases, which allows remote authenticated users to cause a denial of service (bug invisibility) via a crafted comment.

Affected configurations

Nvd

Node

mozillabugzillaMatch2.4

mozillabugzillaMatch2.6

mozillabugzillaMatch2.8

mozillabugzillaMatch2.9

mozillabugzillaMatch2.23.1

mozillabugzillaMatch2.23.2

mozillabugzillaMatch2.23.3

mozillabugzillaMatch2.23.4

mozillabugzillaMatch3.0

mozillabugzillaMatch3.0rc1

mozillabugzillaMatch3.0.0

mozillabugzillaMatch3.0.1

mozillabugzillaMatch3.0.2

mozillabugzillaMatch3.0.3

mozillabugzillaMatch3.0.4

mozillabugzillaMatch3.0.5

mozillabugzillaMatch3.0.6

mozillabugzillaMatch3.0.7

mozillabugzillaMatch3.0.8

mozillabugzillaMatch3.0.9

mozillabugzillaMatch3.0.10

mozillabugzillaMatch3.0.11

mozillabugzillaMatch3.1.0

mozillabugzillaMatch3.1.1

mozillabugzillaMatch3.1.2

mozillabugzillaMatch3.1.3

mozillabugzillaMatch3.2

mozillabugzillaMatch3.2.2

mozillabugzillaMatch3.2.3

mozillabugzillaMatch3.2.4

mozillabugzillaMatch3.2.5

mozillabugzillaMatch3.2.6

mozillabugzillaMatch3.2.7

mozillabugzillaMatch3.3.1

mozillabugzillaMatch3.3.2

mozillabugzillaMatch3.3.3

mozillabugzillaMatch3.3.4

mozillabugzillaMatch3.4.1

mozillabugzillaMatch3.4.2

mozillabugzillaMatch3.4.3

mozillabugzillaMatch3.4.4

mozillabugzillaMatch3.4.5

mozillabugzillaMatch3.4.6

mozillabugzillaMatch3.4.7

mozillabugzillaMatch3.5.1

mozillabugzillaMatch3.5.2

mozillabugzillaMatch3.5.3

mozillabugzillaMatch3.6

mozillabugzillaMatch3.6.1

mozillabugzillaMatch3.7

mozillabugzillaMatch3.7.1

mozillabugzillaMatch3.7.2

VendorProductVersionCPE
mozillabugzilla2.4cpe:2.3:a:mozilla:bugzilla:2.4:*:*:*:*:*:*:*
mozillabugzilla2.6cpe:2.3:a:mozilla:bugzilla:2.6:*:*:*:*:*:*:*
mozillabugzilla2.8cpe:2.3:a:mozilla:bugzilla:2.8:*:*:*:*:*:*:*
mozillabugzilla2.9cpe:2.3:a:mozilla:bugzilla:2.9:*:*:*:*:*:*:*
mozillabugzilla2.23.1cpe:2.3:a:mozilla:bugzilla:2.23.1:*:*:*:*:*:*:*
mozillabugzilla2.23.2cpe:2.3:a:mozilla:bugzilla:2.23.2:*:*:*:*:*:*:*
mozillabugzilla2.23.3cpe:2.3:a:mozilla:bugzilla:2.23.3:*:*:*:*:*:*:*
mozillabugzilla2.23.4cpe:2.3:a:mozilla:bugzilla:2.23.4:*:*:*:*:*:*:*
mozillabugzilla3.0cpe:2.3:a:mozilla:bugzilla:3.0:*:*:*:*:*:*:*
mozillabugzilla3.0cpe:2.3:a:mozilla:bugzilla:3.0:rc1:*:*:*:*:*:*

Vendor	Product	Version	CPE
mozilla	bugzilla	2.4	cpe:2.3:a:mozilla:bugzilla:2.4:::::::*
mozilla	bugzilla	2.6	cpe:2.3:a:mozilla:bugzilla:2.6:::::::*
mozilla	bugzilla	2.8	cpe:2.3:a:mozilla:bugzilla:2.8:::::::*
mozilla	bugzilla	2.9	cpe:2.3:a:mozilla:bugzilla:2.9:::::::*
mozilla	bugzilla	2.23.1	cpe:2.3:a:mozilla:bugzilla:2.23.1:::::::*
mozilla	bugzilla	2.23.2	cpe:2.3:a:mozilla:bugzilla:2.23.2:::::::*
mozilla	bugzilla	2.23.3	cpe:2.3:a:mozilla:bugzilla:2.23.3:::::::*
mozilla	bugzilla	2.23.4	cpe:2.3:a:mozilla:bugzilla:2.23.4:::::::*
mozilla	bugzilla	3.0	cpe:2.3:a:mozilla:bugzilla:3.0:::::::*
mozilla	bugzilla	3.0	cpe:2.3:a:mozilla:bugzilla:3.0:rc1::::::