SecuritySpace - CVE-2010-2470

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

CVE ID: CVE-2010-2470

Description: Install/Filesystem.pm in Bugzilla 3.5.1 through 3.6.1 and 3.7 through 3.7.1, when use_suexec is enabled, uses world-readable permissions within (1) .bzr/ and (2) data/webdot/, which allows local users to obtain potentially sensitive data by reading files in these directories, a different vulnerability than CVE-2010-0180.

Test IDs: 1.3.6.1.4.1.25623.1.0.801368

Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2010-2470

CVE ID:	CVE-2010-2470
Description:	Install/Filesystem.pm in Bugzilla 3.5.1 through 3.6.1 and 3.7 through 3.7.1, when use_suexec is enabled, uses world-readable permissions within (1) .bzr/ and (2) data/webdot/, which allows local users to obtain potentially sensitive data by reading files in these directories, a different vulnerability than CVE-2010-0180.
Test IDs:	1.3.6.1.4.1.25623.1.0.801368
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2010-2470