Lucene search

[email protected]NVD:CVE-2010-2759

HistoryAug 16, 2010 - 3:14 p.m.

CVE-2010-2759

2010-08-1615:14:12

CWE-189

[email protected]

web.nvd.nist.gov

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:N/I:N/A:P

AI Score

5.9

Confidence

Low

EPSS

0.013

Percentile

85.6%

JSON

Bugzilla 2.23.1 through 3.2.7, 3.3.1 through 3.4.7, 3.5.1 through 3.6.1, and 3.7 through 3.7.2, when PostgreSQL is used, does not properly handle large integers in (1) bug and (2) attachment phrases, which allows remote authenticated users to cause a denial of service (bug invisibility) via a crafted comment.

Affected configurations

Nvd

Node

mozillabugzillaMatch2.4

mozillabugzillaMatch2.6

mozillabugzillaMatch2.8

mozillabugzillaMatch2.9

mozillabugzillaMatch2.23.1

mozillabugzillaMatch2.23.2

mozillabugzillaMatch2.23.3

mozillabugzillaMatch2.23.4

mozillabugzillaMatch3.0

mozillabugzillaMatch3.0rc1

mozillabugzillaMatch3.0.0

mozillabugzillaMatch3.0.1

mozillabugzillaMatch3.0.2

mozillabugzillaMatch3.0.3

mozillabugzillaMatch3.0.4

mozillabugzillaMatch3.0.5

mozillabugzillaMatch3.0.6

mozillabugzillaMatch3.0.7

mozillabugzillaMatch3.0.8

mozillabugzillaMatch3.0.9

mozillabugzillaMatch3.0.10

mozillabugzillaMatch3.0.11

mozillabugzillaMatch3.1.0

mozillabugzillaMatch3.1.1

mozillabugzillaMatch3.1.2

mozillabugzillaMatch3.1.3

mozillabugzillaMatch3.2

mozillabugzillaMatch3.2.2

mozillabugzillaMatch3.2.3

mozillabugzillaMatch3.2.4

mozillabugzillaMatch3.2.5

mozillabugzillaMatch3.2.6

mozillabugzillaMatch3.2.7

mozillabugzillaMatch3.3.1

mozillabugzillaMatch3.3.2

mozillabugzillaMatch3.3.3

mozillabugzillaMatch3.3.4

mozillabugzillaMatch3.4.1

mozillabugzillaMatch3.4.2

mozillabugzillaMatch3.4.3

mozillabugzillaMatch3.4.4

mozillabugzillaMatch3.4.5

mozillabugzillaMatch3.4.6

mozillabugzillaMatch3.4.7

mozillabugzillaMatch3.5.1

mozillabugzillaMatch3.5.2

mozillabugzillaMatch3.5.3

mozillabugzillaMatch3.6

mozillabugzillaMatch3.6.1

mozillabugzillaMatch3.7

mozillabugzillaMatch3.7.1

mozillabugzillaMatch3.7.2

VendorProductVersionCPE
mozillabugzilla2.4cpe:2.3:a:mozilla:bugzilla:2.4:*:*:*:*:*:*:*
mozillabugzilla2.6cpe:2.3:a:mozilla:bugzilla:2.6:*:*:*:*:*:*:*
mozillabugzilla2.8cpe:2.3:a:mozilla:bugzilla:2.8:*:*:*:*:*:*:*
mozillabugzilla2.9cpe:2.3:a:mozilla:bugzilla:2.9:*:*:*:*:*:*:*
mozillabugzilla2.23.1cpe:2.3:a:mozilla:bugzilla:2.23.1:*:*:*:*:*:*:*
mozillabugzilla2.23.2cpe:2.3:a:mozilla:bugzilla:2.23.2:*:*:*:*:*:*:*
mozillabugzilla2.23.3cpe:2.3:a:mozilla:bugzilla:2.23.3:*:*:*:*:*:*:*
mozillabugzilla2.23.4cpe:2.3:a:mozilla:bugzilla:2.23.4:*:*:*:*:*:*:*
mozillabugzilla3.0cpe:2.3:a:mozilla:bugzilla:3.0:*:*:*:*:*:*:*
mozillabugzilla3.0cpe:2.3:a:mozilla:bugzilla:3.0:rc1:*:*:*:*:*:*

Vendor	Product	Version	CPE
mozilla	bugzilla	2.4	cpe:2.3:a:mozilla:bugzilla:2.4:::::::*
mozilla	bugzilla	2.6	cpe:2.3:a:mozilla:bugzilla:2.6:::::::*
mozilla	bugzilla	2.8	cpe:2.3:a:mozilla:bugzilla:2.8:::::::*
mozilla	bugzilla	2.9	cpe:2.3:a:mozilla:bugzilla:2.9:::::::*
mozilla	bugzilla	2.23.1	cpe:2.3:a:mozilla:bugzilla:2.23.1:::::::*
mozilla	bugzilla	2.23.2	cpe:2.3:a:mozilla:bugzilla:2.23.2:::::::*
mozilla	bugzilla	2.23.3	cpe:2.3:a:mozilla:bugzilla:2.23.3:::::::*
mozilla	bugzilla	2.23.4	cpe:2.3:a:mozilla:bugzilla:2.23.4:::::::*
mozilla	bugzilla	3.0	cpe:2.3:a:mozilla:bugzilla:3.0:::::::*
mozilla	bugzilla	3.0	cpe:2.3:a:mozilla:bugzilla:3.0:rc1::::::