The User.get method in Bugzilla/WebService/User.pm in Bugzilla 3.7.x and 4.0.x prior to 4.0.9, 4.1.x and 4.2.x prior to 4.2.4, and 4.3.x and 4.4.x prior to 4.4rc1 has a different outcome for a groups request depending on whether a group exists, which allows remote authenticated users to discover private group names by observing whether a call throws an error.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mozilla bugzilla 3.7.3 |
||
mozilla bugzilla 3.7.1 |
||
mozilla bugzilla 3.7.2 |
||
mozilla bugzilla 3.7 |
||
mozilla bugzilla 4.0.3 |
||
mozilla bugzilla 4.0 |
||
mozilla bugzilla 4.0.5 |
||
mozilla bugzilla 4.0.2 |
||
mozilla bugzilla 4.0.4 |
||
mozilla bugzilla 4.0.6 |
||
mozilla bugzilla 4.0.8 |
||
mozilla bugzilla 4.0.1 |
||
mozilla bugzilla 4.0.7 |
||
mozilla bugzilla 4.1.2 |
||
mozilla bugzilla 4.1.3 |
||
mozilla bugzilla 4.1 |
||
mozilla bugzilla 4.1.1 |
||
mozilla bugzilla 4.2 |
||
mozilla bugzilla 4.2.1 |
||
mozilla bugzilla 4.2.2 |
||
mozilla bugzilla 4.2.3 |
||
mozilla bugzilla 4.3 |
||
mozilla bugzilla 4.3.1 |
||
mozilla bugzilla 4.3.2 |
||
mozilla bugzilla 4.3.3 |