CVE-2006-0915

Опубликовано: 28 фев. 2006

Источник: debian

EPSS Низкий

Описание

Bugzilla 2.16.10 does not properly handle certain characters in the (1) maxpatchsize and (2) maxattachmentsize parameters in attachment.cgi, which allows remote attackers to trigger a SQL error.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
bugzilla	fixed	2.20.1-1		package
bugzilla	not-affected		woody	package
bugzilla	not-affected		sarge	package

EPSS

Процентиль: 70%

0.00636

Низкий

Связанные уязвимости

CVE-2006-0915

ubuntu

больше 19 лет назад

Bugzilla 2.16.10 does not properly handle certain characters in the (1) maxpatchsize and (2) maxattachmentsize parameters in attachment.cgi, which allows remote attackers to trigger a SQL error.

CVE-2006-0915

nvd

больше 19 лет назад

Bugzilla 2.16.10 does not properly handle certain characters in the (1) maxpatchsize and (2) maxattachmentsize parameters in attachment.cgi, which allows remote attackers to trigger a SQL error.

GHSA-g6qc-mg88-cfqg

github

больше 3 лет назад

Bugzilla 2.16.10 does not properly handle certain characters in the (1) maxpatchsize and (2) maxattachmentsize parameters in attachment.cgi, which allows remote attackers to trigger a SQL error.

EPSS

Процентиль: 70%

0.00636

Низкий