SecuritySpace - CVE-2001-0329

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

CVE ID: CVE-2001-0329

Description: Bugzilla 2.10 allows remote attackers to execute arbitrary commands via shell metacharacters in a username that is then processed by (1) the Bugzilla_login cookie in post_bug.cgi, or (2) the who parameter in process_bug.cgi.

Test IDs: None available

Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2001-0329
@stake Security Advisory: A043001-1
http://www.atstake.com/research/advisories/2001/a043001-1.txt
BugTraq ID: 1199
http://www.securityfocus.com/bid/1199

CVE ID:	CVE-2001-0329
Description:	Bugzilla 2.10 allows remote attackers to execute arbitrary commands via shell metacharacters in a username that is then processed by (1) the Bugzilla_login cookie in post_bug.cgi, or (2) the who parameter in process_bug.cgi.
Test IDs:	None available
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2001-0329 @stake Security Advisory: A043001-1 http://www.atstake.com/research/advisories/2001/a043001-1.txt BugTraq ID: 1199 http://www.securityfocus.com/bid/1199