Lucene search

[email protected]NVD:CVE-2003-1043

HistoryAug 18, 2004 - 4:00 a.m.

CVE-2003-1043

2004-08-1804:00:00

[email protected]

web.nvd.nist.gov

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.8

Confidence

Low

EPSS

0.003

Percentile

70.7%

JSON

SQL injection vulnerability in Bugzilla 2.16.3 and earlier, and 2.17.1 through 2.17.4, allows remote authenticated users with editkeywords privileges to execute arbitrary SQL via the id parameter to editkeywords.cgi.

Affected configurations

Nvd

Node

mozillabugzillaMatch2.4

mozillabugzillaMatch2.6

mozillabugzillaMatch2.8

mozillabugzillaMatch2.10

mozillabugzillaMatch2.12

mozillabugzillaMatch2.14

mozillabugzillaMatch2.14.1

mozillabugzillaMatch2.14.2

mozillabugzillaMatch2.14.3

mozillabugzillaMatch2.14.4

mozillabugzillaMatch2.14.5

mozillabugzillaMatch2.16

mozillabugzillaMatch2.16.1

mozillabugzillaMatch2.16.2

mozillabugzillaMatch2.16.3

mozillabugzillaMatch2.17.1

mozillabugzillaMatch2.17.3

mozillabugzillaMatch2.17.4

VendorProductVersionCPE
mozillabugzilla2.4cpe:2.3:a:mozilla:bugzilla:2.4:*:*:*:*:*:*:*
mozillabugzilla2.6cpe:2.3:a:mozilla:bugzilla:2.6:*:*:*:*:*:*:*
mozillabugzilla2.8cpe:2.3:a:mozilla:bugzilla:2.8:*:*:*:*:*:*:*
mozillabugzilla2.10cpe:2.3:a:mozilla:bugzilla:2.10:*:*:*:*:*:*:*
mozillabugzilla2.12cpe:2.3:a:mozilla:bugzilla:2.12:*:*:*:*:*:*:*
mozillabugzilla2.14cpe:2.3:a:mozilla:bugzilla:2.14:*:*:*:*:*:*:*
mozillabugzilla2.14.1cpe:2.3:a:mozilla:bugzilla:2.14.1:*:*:*:*:*:*:*
mozillabugzilla2.14.2cpe:2.3:a:mozilla:bugzilla:2.14.2:*:*:*:*:*:*:*
mozillabugzilla2.14.3cpe:2.3:a:mozilla:bugzilla:2.14.3:*:*:*:*:*:*:*
mozillabugzilla2.14.4cpe:2.3:a:mozilla:bugzilla:2.14.4:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
mozilla	bugzilla	2.4	cpe:2.3:a:mozilla:bugzilla:2.4:::::::*
mozilla	bugzilla	2.6	cpe:2.3:a:mozilla:bugzilla:2.6:::::::*
mozilla	bugzilla	2.8	cpe:2.3:a:mozilla:bugzilla:2.8:::::::*
mozilla	bugzilla	2.10	cpe:2.3:a:mozilla:bugzilla:2.10:::::::*
mozilla	bugzilla	2.12	cpe:2.3:a:mozilla:bugzilla:2.12:::::::*
mozilla	bugzilla	2.14	cpe:2.3:a:mozilla:bugzilla:2.14:::::::*
mozilla	bugzilla	2.14.1	cpe:2.3:a:mozilla:bugzilla:2.14.1:::::::*
mozilla	bugzilla	2.14.2	cpe:2.3:a:mozilla:bugzilla:2.14.2:::::::*
mozilla	bugzilla	2.14.3	cpe:2.3:a:mozilla:bugzilla:2.14.3:::::::*
mozilla	bugzilla	2.14.4	cpe:2.3:a:mozilla:bugzilla:2.14.4:::::::*

Rows per page:

1-10 of 181

References

bugzilla.mozilla.org/show_bug.cgi?id=219044

distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000774

www.securityfocus.com/archive/1/343185

www.securityfocus.com/bid/8953

exchange.xforce.ibmcloud.com/vulnerabilities/13596

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.8

Confidence

Low

EPSS

0.003

Percentile

70.7%

JSON

Related for NVD:CVE-2003-1043

cvelist1 cve1 nessus1