Bugzilla post_bug.cgi weak security

bugzilla-postbug-weak-security (42797) The risk level is classified as LowLow Risk

Description:

Bugzilla could provide weaker than expected security, caused by an error in the post_bug.cgi script that allows an attacker to guess the name of a hidden product. By modifying the URL to specify the name of the product, a remote attacker could exploit this vulnerability to inject bugs into products that are closed for bug entry.

Platforms Affected:

  • Mozilla, Bugzilla 2.10
  • Mozilla, Bugzilla 2.12
  • Mozilla, Bugzilla 2.14
  • Mozilla, Bugzilla 2.14.1
  • Mozilla, Bugzilla 2.14.2
  • Mozilla, Bugzilla 2.14.3
  • Mozilla, Bugzilla 2.14.4
  • Mozilla, Bugzilla 2.14.5
  • Mozilla, Bugzilla 2.16
  • Mozilla, Bugzilla 2.16.1
  • Mozilla, Bugzilla 2.16.2
  • Mozilla, Bugzilla 2.16.3
  • Mozilla, Bugzilla 2.16.4
  • Mozilla, Bugzilla 2.16.5
  • Mozilla, Bugzilla 2.17
  • Mozilla, Bugzilla 2.17.1
  • Mozilla, Bugzilla 2.17.3
  • Mozilla, Bugzilla 2.17.4
  • Mozilla, Bugzilla 2.17.5
  • Mozilla, Bugzilla 2.17.6
  • Mozilla, Bugzilla 2.17.7
  • Mozilla, Bugzilla 2.18 rc2
  • Mozilla, Bugzilla 2.18 rc1
  • Mozilla, Bugzilla 2.19.1
  • Mozilla, Bugzilla 2.19.2

Remedy:

Refer to Bugzilla Security Advisory, May 11, 2005 for patch, upgrade or suggested workaround information. See References.

Consequences:

Gain Access

References:

  • Bugzilla Security Advisory, May 11, 2005, 2.16.8, 2.18, 2.19.2 Security Advisory at http://www.bugzilla.org/security/2.16.8/.
  • Bugzilla Web site, Bugzilla Project - Download at http://www.bugzilla.org/download.html.
  • CVE-2005-1564: post_bug.cgi in Bugzilla 2.10 through 2.18, 2.19.1, and 2.19.2 allows remote authenticated users to enter bugs into products that are closed for bug entry by modifying the URL to specify the name of the product.
  • OSVDB ID: 16426: Bugzilla Closed State Product Bug Entry Creation
  • SA15338: Bugzilla Two Information Disclosure Weaknesses

Reported:

May 11, 2005

The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

For corrections or additions please email xforce@iss.net

Return to the main page