Bugzilla 2.14 prior to 2.14.2, and 2.16 prior to 2.16rc2, when configured to perform reverse DNS lookups, allows remote malicious users to bypass IP restrictions by connecting from a system with a spoofed reverse DNS hostname.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mozilla bugzilla 2.14.1 |
||
mozilla bugzilla 2.16 |
||
mozilla bugzilla 2.14 |