Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2010-2470
HistoryJun 28, 2010 - 5:30 p.m.

CVE-2010-2470

2010-06-2817:30:01
CWE-264
[email protected]
web.nvd.nist.gov
7

CVSS2

1.9

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:M/Au:N/C:P/I:N/A:N

AI Score

5.8

Confidence

Low

EPSS

0

Percentile

5.1%

JSON

Install/Filesystem.pm in Bugzilla 3.5.1 through 3.6.1 and 3.7 through 3.7.1, when use_suexec is enabled, uses world-readable permissions within (1) .bzr/ and (2) data/webdot/, which allows local users to obtain potentially sensitive data by reading files in these directories, a different vulnerability than CVE-2010-0180.

Affected configurations

Nvd
Node
mozillabugzillaMatch3.5.1
OR
mozillabugzillaMatch3.5.2
OR
mozillabugzillaMatch3.5.3
OR
mozillabugzillaMatch3.6
OR
mozillabugzillaMatch3.6rc1
OR
mozillabugzillaMatch3.6.1
OR
mozillabugzillaMatch3.7
OR
mozillabugzillaMatch3.7.1
VendorProductVersionCPE
mozillabugzilla3.5.1cpe:2.3:a:mozilla:bugzilla:3.5.1:*:*:*:*:*:*:*
mozillabugzilla3.5.2cpe:2.3:a:mozilla:bugzilla:3.5.2:*:*:*:*:*:*:*
mozillabugzilla3.5.3cpe:2.3:a:mozilla:bugzilla:3.5.3:*:*:*:*:*:*:*
mozillabugzilla3.6cpe:2.3:a:mozilla:bugzilla:3.6:*:*:*:*:*:*:*
mozillabugzilla3.6cpe:2.3:a:mozilla:bugzilla:3.6:rc1:*:*:*:*:*:*
mozillabugzilla3.6.1cpe:2.3:a:mozilla:bugzilla:3.6.1:*:*:*:*:*:*:*
mozillabugzilla3.7cpe:2.3:a:mozilla:bugzilla:3.7:*:*:*:*:*:*:*
mozillabugzilla3.7.1cpe:2.3:a:mozilla:bugzilla:3.7.1:*:*:*:*:*:*:*

Related

ubuntucve 2
cvelist 2
prion 2
cve 2
nessus 3
nvd 1
openvas 6
seebug 1
freebsd 1
ubuntucve
ubuntucve
CVE-2010-2470
2010-06-28 00:00:00
CVE-2010-0180
2010-06-28 00:00:00
cvelist
cvelist
CVE-2010-2470
2010-06-28 17:00:00
CVE-2010-0180
2010-06-28 17:00:00
prion
prion
Design/Logic Flaw
2010-06-28 17:30:00
Design/Logic Flaw
2010-06-28 17:30:00
cve
cve
CVE-2010-2470
2010-06-28 17:30:01
CVE-2010-0180
2010-06-28 17:30:00
nessus
nessus
Bugzilla 'time-tracking' fields Information Disclosure
2010-06-30 00:00:00
Bugzilla < 3.2.7 / 3.4.7 / 3.6.1 Multiple Vulnerabilities
2010-06-28 00:00:00
FreeBSD : bugzilla -- information disclosure (f1331504-8849-11df-89b8-00151735203a)
2010-07-06 00:00:00
nvd
nvd
CVE-2010-0180
2010-06-28 17:30:00
openvas
openvas
Bugzilla 'localconfig' Information Disclosure Vulnerability
2010-07-16 00:00:00
Bugzilla 'localconfig' Information Disclosure Vulnerability
2010-07-16 00:00:00
Bugzilla 'Install/Filesystem.pm' Information Disclosure Vulnerability
2010-07-16 00:00:00
seebug
seebug
Mozilla Bugzilla localconfigζ–‡δ»ΆδΏ‘ζ―ζ³„ιœ²ζΌζ΄ž
2010-06-28 00:00:00
freebsd
freebsd
bugzilla -- information disclosure
2010-06-24 00:00:00

CVSS2

1.9

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:M/Au:N/C:P/I:N/A:N

AI Score

5.8

Confidence

Low

EPSS

0

Percentile

5.1%

JSON
Related for NVD:CVE-2010-2470
ubuntucve2cvelist2prion2cve2nessus3nvd1openvas6seebug1freebsd1