Vulnerabilites - CVE-2001-0330

Home > Resources > Vulnerabilites > CVE-2001-0330

RESOURCES

CVE-2001-0330

Status:

Entry

Description:

Bugzilla 2.10 allows remote attackers to access sensitive information, including the database username and password, via an HTTP request for the globals.pl file, which is normally returned by the web server without being executed.

Reference:

ATSTAKE:A043001-1
URL:http://www.atstake.com/research/advisories/2001/a043001-1.txt
BID:2671
URL:http://www.securityfocus.com/bid/2671
XF:bugzilla-gobalpl-gain-information(6489)
URL:http://xforce.iss.net/static/6489.php

CVE ID

Protocol

SoursePort

TargetPort

Other Vulnerabilities:

Year	CEV (3053) Common Vulnerabilities and Exposures	CAN (20174) Candidate
1999	CVE-1999 (821)	CAN-1999 (749 )
2000	CVE-2000 (808)	CAN-2000 (423 )
2001	CVE-2001 (625)	CAN-2001 (934 )
2002	CVE-2002 (643)	CAN-2002 (1566)
2003	CVE-2003 (81 )	CAN-2003 (1236)
2004	CVE-2004 (75 )	CAN-2004 (2601)
2005	-	CAN-2005 (4825)
2006	-	CAN-2006 (6982)
2007	-	CAN-2007 (858 )

Free Network Analyzer

Free Packet Sniffer

We’re here to help…

Call:  800-381-6680
Fax:  888-813-1029
email:

Quick Links

Stay in touch

Colasoft, Capsa, nChronos and Colasoft logos are registered trademarks of Colasoft. Sniffer is a registered trademark of Network General Corporation. All other names are trademarks or registered trademarks of their respective owners.

nChronos

Capsa

nChronos

Capsa Enterprise

Capsa Professional

Other

Colasoft Online Store

How to Buy

nChronos

Capsa

Network Tools

Other

RESOURCES

CVE-2001-0330

Status:

Description:

Reference:

Other Vulnerabilities:

Free Network Analyzer

We’re here to help…

Quick Links

Stay in touch