Vulnerability Details CVE-2004-0706
Bugzilla 2.17.5 through 2.17.7 embeds the password in an image URL, which could allow local users to view the password in the web server log files.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 22.4%
CVSS Severity
CVSS v2 Score 2.1
References
- http://bugzilla.mozilla.org/show_bug.cgi?id=235510
- http://marc.info/?l=bugtraq&m=108965446813639&w=2
- http://www.securityfocus.com/bid/10698
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16669
- http://bugzilla.mozilla.org/show_bug.cgi?id=235510
- http://marc.info/?l=bugtraq&m=108965446813639&w=2
- http://www.securityfocus.com/bid/10698
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16669
Products affected by CVE-2004-0706
-
cpe:2.3:a:mozilla:bugzilla:2.10
-
cpe:2.3:a:mozilla:bugzilla:2.12
-
cpe:2.3:a:mozilla:bugzilla:2.14
-
cpe:2.3:a:mozilla:bugzilla:2.14.1
-
cpe:2.3:a:mozilla:bugzilla:2.14.2
-
cpe:2.3:a:mozilla:bugzilla:2.14.3
-
cpe:2.3:a:mozilla:bugzilla:2.14.4
-
cpe:2.3:a:mozilla:bugzilla:2.14.5
-
cpe:2.3:a:mozilla:bugzilla:2.16
-
cpe:2.3:a:mozilla:bugzilla:2.16.1
-
cpe:2.3:a:mozilla:bugzilla:2.16.2
-
cpe:2.3:a:mozilla:bugzilla:2.16.3
-
cpe:2.3:a:mozilla:bugzilla:2.16.4
-
cpe:2.3:a:mozilla:bugzilla:2.16.5
-
cpe:2.3:a:mozilla:bugzilla:2.17
-
cpe:2.3:a:mozilla:bugzilla:2.17.1
-
cpe:2.3:a:mozilla:bugzilla:2.17.3
-
cpe:2.3:a:mozilla:bugzilla:2.17.4
-
cpe:2.3:a:mozilla:bugzilla:2.17.5
-
cpe:2.3:a:mozilla:bugzilla:2.17.6
-
cpe:2.3:a:mozilla:bugzilla:2.17.7
-
cpe:2.3:a:mozilla:bugzilla:2.4
-
cpe:2.3:a:mozilla:bugzilla:2.6
-
cpe:2.3:a:mozilla:bugzilla:2.8