Lucene search
Ubuntu.comUB:CVE-2009-1213HistoryApr 01, 2009 - 12:00 a.m.
CVE-2009-1213
2009-04-0100:00:00
ubuntu.com
ubuntu.com
13
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
EPSS
0.003
Percentile
71.5%
Cross-site request forgery (CSRF) vulnerability in attachment.cgi in
Bugzilla 3.2 before 3.2.3, 3.3 before 3.3.4, and earlier versions allows
remote attackers to hijack the authentication of arbitrary users for
requests that use attachment editing.
Related
nessus
nessus
Fedora 9 : bugzilla-3.2.3-1.fc9 (2009-3405)
2009-04-08 00:00:00
Fedora 10 : bugzilla-3.2.3-1.fc10 (2009-3410)
2009-04-23 00:00:00
GLSA-201006-19 : Bugzilla: Multiple vulnerabilities
2010-06-04 00:00:00
fedora
fedora
[SECURITY] Fedora 10 Update: bugzilla-3.2.4-1.fc10
2009-07-28 18:24:48
[SECURITY] Fedora 9 Update: bugzilla-3.2.3-1.fc9
2009-04-07 15:48:59
[SECURITY] Fedora 10 Update: bugzilla-3.2.3-1.fc10
2009-04-07 15:49:33
openvas
openvas
Fedora Core 10 FEDORA-2009-7669 (bugzilla)
2009-07-29 00:00:00
Fedora Core 10 FEDORA-2009-3410 (bugzilla)
2009-04-15 00:00:00
Fedora Core 9 FEDORA-2009-3405 (bugzilla)
2009-04-15 00:00:00
cvelist
cvelist
CVE-2009-1213
2009-04-01 10:00:00
cve
cve
CVE-2009-1213
2009-04-01 10:30:00
prion
prion
Cross site request forgery (csrf)
2009-04-01 10:30:00
seebug
seebug
Bugzilla attachment.cgiθ·¨η«θ―·ζ±δΌͺι ζΌζ΄
2009-04-02 00:00:00
nvd
nvd
CVE-2009-1213
2009-04-01 10:30:00
gentoo
gentoo
Bugzilla: Multiple vulnerabilities
2010-06-04 00:00:00
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
EPSS
0.003
Percentile
71.5%
Related for UB:CVE-2009-1213