Lucene search
Ubuntu.comUB:CVE-2010-4349HistoryJan 03, 2011 - 12:00 a.m.
CVE-2010-4349
2011-01-0300:00:00
ubuntu.com
ubuntu.com
16
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
EPSS
0.007
Percentile
79.9%
admin/upgrade_unattended.php in MantisBT before 1.2.4 allows remote
attackers to obtain sensitive information via an invalid db_type parameter,
which reveals the installation path in an error message, related to an
unsafe call by MantisBT to a function in the ADOdb Library for PHP.
Related
nvd
nvd
CVE-2010-4349
2011-01-03 20:00:43
cvelist
cvelist
CVE-2010-4349
2011-01-03 19:26:00
cve
cve
CVE-2010-4349
2011-01-03 20:00:43
prion
prion
Design/Logic Flaw
2011-01-03 20:00:00
exploitdb
exploitdb
openvas
openvas
MantisBT Multiple Vulnerabilities
2011-01-08 00:00:00
MantisBT < 1.2.4 Multiple Vulnerabilities
2011-01-08 00:00:00
MantisBT <= 1.2.3 (db_type) Local File Inclusion Vulnerability
2010-12-15 00:00:00
nessus
nessus
Fedora 14 : mantis-1.1.8-5.fc14 (2010-19078)
2011-01-03 00:00:00
Fedora 13 : mantis-1.1.8-5.fc13 (2010-19070)
2011-01-03 00:00:00
GLSA-201211-01 : MantisBT: Multiple vulnerabilities
2012-11-09 00:00:00
fedora
fedora
[SECURITY] Fedora 14 Update: mantis-1.1.8-5.fc14
2010-12-31 20:59:00
[SECURITY] Fedora 13 Update: mantis-1.1.8-5.fc13
2010-12-31 20:57:24
gentoo
gentoo
MantisBT: Multiple vulnerabilities
2012-11-08 00:00:00
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
EPSS
0.007
Percentile
79.9%
Related for UB:CVE-2010-4349