Vulnerabilities > CVE-2001-0330 - Information Disclosure vulnerability in Bugzilla Sensitive
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Bugzilla 2.10 allows remote attackers to access sensitive information, including the database username and password, via an HTTP request for the globals.pl file, which is normally returned by the web server without being executed.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 4 |