FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

bugzilla -- two SQL injections, sensitive data exposure

Affected packages
3.3.1	<	bugzilla	<	3.4.2

Details

VuXML ID	b9ec7fe3-a38a-11de-9c6b-003048818f40
Discovery	2009-09-11
Entry	2009-09-17

A Bugzilla Security Advisory reports:

It is possible to inject raw SQL into the Bugzilla database via the "Bug.create" and "Bug.search" WebService functions.

When a user would change his password, his new password would be exposed in the URL field of the browser if he logged in right after changing his password.

[source]

References

CVE Name	CVE-2009-3125
CVE Name	CVE-2009-3165
CVE Name	CVE-2009-3166
URL	http://www.bugzilla.org/security/3.0.8/