Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2014-1572

The confirm_create_account function in the account-creation feature in token.cgi in Bugzilla 2.x through 4.0.x before 4.0.15, 4.1.x and 4.2.x before 4.2.11, 4.3.x and 4.4.x before 4.4.6, and 4.5.x before 4.5.6 does not specify a scalar context for the realname parameter, which allows remote attackers to create accounts with unverified e-mail addresses by sending three realname values with realname=login_name as the second, as demonstrated by selecting an e-mail address with a domain name for which group privileges are automatically granted.

Published

2014-10-13T01:55:06.933

Last Modified

2025-04-12T10:46:40.837

Status

Deferred

Source

[email protected]

Severity

CVSSv2: 5.0 (MEDIUM)

CVSSv2 Vector

AV:N/AC:L/Au:N/C:N/I:P/A:N

Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality Impact: NONE
Integrity Impact: PARTIAL
Availability Impact: NONE

Exploitability Score

10.0

Impact Score

2.9

Weaknesses

Type: Primary
CWE-264

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	fedoraproject	fedora	19	Yes
Operating System	fedoraproject	fedora	20	Yes
Operating System	fedoraproject	fedora	21	Yes
Application	mozilla	bugzilla	2.0	Yes
Application	mozilla	bugzilla	2.2	Yes
Application	mozilla	bugzilla	2.4	Yes
Application	mozilla	bugzilla	2.6	Yes
Application	mozilla	bugzilla	2.8	Yes
Application	mozilla	bugzilla	2.9	Yes
Application	mozilla	bugzilla	2.10	Yes
Application	mozilla	bugzilla	2.12	Yes
Application	mozilla	bugzilla	2.14	Yes
Application	mozilla	bugzilla	2.14.1	Yes
Application	mozilla	bugzilla	2.14.2	Yes
Application	mozilla	bugzilla	2.14.3	Yes
Application	mozilla	bugzilla	2.14.4	Yes
Application	mozilla	bugzilla	2.14.5	Yes
Application	mozilla	bugzilla	2.16	Yes
Application	mozilla	bugzilla	2.16	Yes
Application	mozilla	bugzilla	2.16	Yes
Application	mozilla	bugzilla	2.16.1	Yes
Application	mozilla	bugzilla	2.16.2	Yes
Application	mozilla	bugzilla	2.16.3	Yes
Application	mozilla	bugzilla	2.16.4	Yes
Application	mozilla	bugzilla	2.16.5	Yes
Application	mozilla	bugzilla	2.16.6	Yes
Application	mozilla	bugzilla	2.16.7	Yes
Application	mozilla	bugzilla	2.16.8	Yes
Application	mozilla	bugzilla	2.16.9	Yes
Application	mozilla	bugzilla	2.16.10	Yes
Application	mozilla	bugzilla	2.16.11	Yes
Application	mozilla	bugzilla	2.16_rc2	Yes
Application	mozilla	bugzilla	2.17	Yes
Application	mozilla	bugzilla	2.17.1	Yes
Application	mozilla	bugzilla	2.17.2	Yes
Application	mozilla	bugzilla	2.17.3	Yes
Application	mozilla	bugzilla	2.17.4	Yes
Application	mozilla	bugzilla	2.17.5	Yes
Application	mozilla	bugzilla	2.17.6	Yes
Application	mozilla	bugzilla	2.17.7	Yes
Application	mozilla	bugzilla	2.18	Yes
Application	mozilla	bugzilla	2.18	Yes
Application	mozilla	bugzilla	2.18	Yes
Application	mozilla	bugzilla	2.18	Yes
Application	mozilla	bugzilla	2.18.1	Yes
Application	mozilla	bugzilla	2.18.2	Yes
Application	mozilla	bugzilla	2.18.3	Yes
Application	mozilla	bugzilla	2.18.4	Yes
Application	mozilla	bugzilla	2.18.5	Yes
Application	mozilla	bugzilla	2.18.6	Yes
Application	mozilla	bugzilla	2.18.6\+	Yes
Application	mozilla	bugzilla	2.18.7	Yes
Application	mozilla	bugzilla	2.18.8	Yes
Application	mozilla	bugzilla	2.18.9	Yes
Application	mozilla	bugzilla	2.19	Yes
Application	mozilla	bugzilla	2.19.1	Yes
Application	mozilla	bugzilla	2.19.2	Yes
Application	mozilla	bugzilla	2.19.3	Yes
Application	mozilla	bugzilla	2.20	Yes
Application	mozilla	bugzilla	2.20	Yes
Application	mozilla	bugzilla	2.20	Yes
Application	mozilla	bugzilla	2.20.1	Yes
Application	mozilla	bugzilla	2.20.2	Yes
Application	mozilla	bugzilla	2.20.3	Yes
Application	mozilla	bugzilla	2.20.4	Yes
Application	mozilla	bugzilla	2.20.5	Yes
Application	mozilla	bugzilla	2.20.6	Yes
Application	mozilla	bugzilla	2.20.7	Yes
Application	mozilla	bugzilla	2.21	Yes
Application	mozilla	bugzilla	2.21.1	Yes
Application	mozilla	bugzilla	2.21.2	Yes
Application	mozilla	bugzilla	2.21.2	Yes
Application	mozilla	bugzilla	2.22	Yes
Application	mozilla	bugzilla	2.22	Yes
Application	mozilla	bugzilla	2.22.1	Yes
Application	mozilla	bugzilla	2.22.2	Yes
Application	mozilla	bugzilla	2.22.3	Yes
Application	mozilla	bugzilla	2.22.4	Yes
Application	mozilla	bugzilla	2.22.5	Yes
Application	mozilla	bugzilla	2.22.6	Yes
Application	mozilla	bugzilla	2.22.7	Yes
Application	mozilla	bugzilla	2.23	Yes
Application	mozilla	bugzilla	2.23.1	Yes
Application	mozilla	bugzilla	2.23.2	Yes
Application	mozilla	bugzilla	2.23.3	Yes
Application	mozilla	bugzilla	2.23.4	Yes
Application	mozilla	bugzilla	3.0	Yes
Application	mozilla	bugzilla	3.0	Yes
Application	mozilla	bugzilla	3.0.0	Yes
Application	mozilla	bugzilla	3.0.1	Yes
Application	mozilla	bugzilla	3.0.2	Yes
Application	mozilla	bugzilla	3.0.3	Yes
Application	mozilla	bugzilla	3.0.4	Yes
Application	mozilla	bugzilla	3.0.5	Yes
Application	mozilla	bugzilla	3.0.6	Yes
Application	mozilla	bugzilla	3.0.7	Yes
Application	mozilla	bugzilla	3.0.8	Yes
Application	mozilla	bugzilla	3.0.9	Yes
Application	mozilla	bugzilla	3.0.10	Yes
Application	mozilla	bugzilla	3.0.11	Yes
Application	mozilla	bugzilla	3.0_rc1	Yes
Application	mozilla	bugzilla	3.1.0	Yes
Application	mozilla	bugzilla	3.1.1	Yes
Application	mozilla	bugzilla	3.1.2	Yes
Application	mozilla	bugzilla	3.1.3	Yes
Application	mozilla	bugzilla	3.1.4	Yes
Application	mozilla	bugzilla	3.2	Yes
Application	mozilla	bugzilla	3.2	Yes
Application	mozilla	bugzilla	3.2	Yes
Application	mozilla	bugzilla	3.2.1	Yes
Application	mozilla	bugzilla	3.2.2	Yes
Application	mozilla	bugzilla	3.2.3	Yes
Application	mozilla	bugzilla	3.2.4	Yes
Application	mozilla	bugzilla	3.2.5	Yes
Application	mozilla	bugzilla	3.2.6	Yes
Application	mozilla	bugzilla	3.2.7	Yes
Application	mozilla	bugzilla	3.2.8	Yes
Application	mozilla	bugzilla	3.2.9	Yes
Application	mozilla	bugzilla	3.2.10	Yes
Application	mozilla	bugzilla	3.3	Yes
Application	mozilla	bugzilla	3.3.1	Yes
Application	mozilla	bugzilla	3.3.2	Yes
Application	mozilla	bugzilla	3.3.3	Yes
Application	mozilla	bugzilla	3.3.4	Yes
Application	mozilla	bugzilla	3.4	Yes
Application	mozilla	bugzilla	3.4	Yes
Application	mozilla	bugzilla	3.4.1	Yes
Application	mozilla	bugzilla	3.4.2	Yes
Application	mozilla	bugzilla	3.4.3	Yes
Application	mozilla	bugzilla	3.4.4	Yes
Application	mozilla	bugzilla	3.4.5	Yes
Application	mozilla	bugzilla	3.4.6	Yes
Application	mozilla	bugzilla	3.4.7	Yes
Application	mozilla	bugzilla	3.4.8	Yes
Application	mozilla	bugzilla	3.4.9	Yes
Application	mozilla	bugzilla	3.4.10	Yes
Application	mozilla	bugzilla	3.4.11	Yes
Application	mozilla	bugzilla	3.4.12	Yes
Application	mozilla	bugzilla	3.4.13	Yes
Application	mozilla	bugzilla	3.5	Yes
Application	mozilla	bugzilla	3.5.1	Yes
Application	mozilla	bugzilla	3.5.2	Yes
Application	mozilla	bugzilla	3.5.3	Yes
Application	mozilla	bugzilla	3.6	Yes
Application	mozilla	bugzilla	3.6	Yes
Application	mozilla	bugzilla	3.6.0	Yes
Application	mozilla	bugzilla	3.6.1	Yes
Application	mozilla	bugzilla	3.6.2	Yes
Application	mozilla	bugzilla	3.6.3	Yes
Application	mozilla	bugzilla	3.6.4	Yes
Application	mozilla	bugzilla	3.6.5	Yes
Application	mozilla	bugzilla	3.6.6	Yes
Application	mozilla	bugzilla	3.6.7	Yes
Application	mozilla	bugzilla	3.6.8	Yes
Application	mozilla	bugzilla	3.6.9	Yes
Application	mozilla	bugzilla	3.6.10	Yes
Application	mozilla	bugzilla	3.6.11	Yes
Application	mozilla	bugzilla	3.6.12	Yes
Application	mozilla	bugzilla	3.6.13	Yes
Application	mozilla	bugzilla	3.7	Yes
Application	mozilla	bugzilla	3.7.1	Yes
Application	mozilla	bugzilla	3.7.2	Yes
Application	mozilla	bugzilla	3.7.3	Yes
Application	mozilla	bugzilla	4.0	Yes
Application	mozilla	bugzilla	4.0	Yes
Application	mozilla	bugzilla	4.0	Yes
Application	mozilla	bugzilla	4.0.1	Yes
Application	mozilla	bugzilla	4.0.10	Yes
Application	mozilla	bugzilla	4.0.11	Yes
Application	mozilla	bugzilla	4.0.12	Yes
Application	mozilla	bugzilla	4.0.13	Yes
Application	mozilla	bugzilla	4.0.14	Yes
Application	mozilla	bugzilla	4.1	Yes
Application	mozilla	bugzilla	4.1.1	Yes
Application	mozilla	bugzilla	4.1.2	Yes
Application	mozilla	bugzilla	4.1.3	Yes
Application	mozilla	bugzilla	4.2	Yes
Application	mozilla	bugzilla	4.2	Yes
Application	mozilla	bugzilla	4.2	Yes
Application	mozilla	bugzilla	4.2.1	Yes
Application	mozilla	bugzilla	4.2.2	Yes
Application	mozilla	bugzilla	4.2.3	Yes
Application	mozilla	bugzilla	4.2.4	Yes
Application	mozilla	bugzilla	4.2.5	Yes
Application	mozilla	bugzilla	4.2.6	Yes
Application	mozilla	bugzilla	4.2.7	Yes
Application	mozilla	bugzilla	4.2.8	Yes
Application	mozilla	bugzilla	4.2.9	Yes
Application	mozilla	bugzilla	4.2.10	Yes
Application	mozilla	bugzilla	4.3	Yes
Application	mozilla	bugzilla	4.3.1	Yes
Application	mozilla	bugzilla	4.3.2	Yes
Application	mozilla	bugzilla	4.3.3	Yes
Application	mozilla	bugzilla	4.4	Yes
Application	mozilla	bugzilla	4.4	Yes
Application	mozilla	bugzilla	4.4	Yes
Application	mozilla	bugzilla	4.4.1	Yes
Application	mozilla	bugzilla	4.4.2	Yes
Application	mozilla	bugzilla	4.4.3	Yes
Application	mozilla	bugzilla	4.4.4	Yes
Application	mozilla	bugzilla	4.4.5	Yes
Application	mozilla	bugzilla	4.5	Yes
Application	mozilla	bugzilla	4.5.1	Yes
Application	mozilla	bugzilla	4.5.2	Yes
Application	mozilla	bugzilla	4.5.3	Yes
Application	mozilla	bugzilla	4.5.4	Yes
Application	mozilla	bugzilla	4.5.5	Yes

References

http://advisories.mageia.org/MGASA-2014-0412.html ([email protected])
http://blog.gerv.net/2014/10/new-class-of-vulnerability-in-perl-web-applications/ ([email protected])
http://lists.fedoraproject.org/pipermail/package-announce/2014-November/142524.html ([email protected])
http://lists.fedoraproject.org/pipermail/package-announce/2014-October/141309.html ([email protected])
http://lists.fedoraproject.org/pipermail/package-announce/2014-October/141321.html ([email protected])
http://openwall.com/lists/oss-security/2014/10/07/20 ([email protected])
http://packetstormsecurity.com/files/128578/Bugzilla-Account-Creation-XSS-Information-Leak.html ([email protected])
http://www.bugzilla.org/security/4.0.14/ Vendor Advisory ([email protected])
http://www.mandriva.com/security/advisories?name=MDVSA-2014:200 ([email protected])
http://www.opennet.ru/opennews/art.shtml?num=40766 ([email protected])
http://www.reddit.com/r/netsec/comments/2ihen0/new_class_of_vulnerability_in_perl_web/ ([email protected])
http://www.securitytracker.com/id/1030978 ([email protected])
https://bugzilla.mozilla.org/show_bug.cgi?id=1074812 Patch ([email protected])
https://security.gentoo.org/glsa/201607-11 ([email protected])
http://advisories.mageia.org/MGASA-2014-0412.html (af854a3a-2127-422b-91ae-364da2661108)
http://blog.gerv.net/2014/10/new-class-of-vulnerability-in-perl-web-applications/ (af854a3a-2127-422b-91ae-364da2661108)
http://lists.fedoraproject.org/pipermail/package-announce/2014-November/142524.html (af854a3a-2127-422b-91ae-364da2661108)
http://lists.fedoraproject.org/pipermail/package-announce/2014-October/141309.html (af854a3a-2127-422b-91ae-364da2661108)
http://lists.fedoraproject.org/pipermail/package-announce/2014-October/141321.html (af854a3a-2127-422b-91ae-364da2661108)
http://openwall.com/lists/oss-security/2014/10/07/20 (af854a3a-2127-422b-91ae-364da2661108)
http://packetstormsecurity.com/files/128578/Bugzilla-Account-Creation-XSS-Information-Leak.html (af854a3a-2127-422b-91ae-364da2661108)
http://www.bugzilla.org/security/4.0.14/ Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.mandriva.com/security/advisories?name=MDVSA-2014:200 (af854a3a-2127-422b-91ae-364da2661108)
http://www.opennet.ru/opennews/art.shtml?num=40766 (af854a3a-2127-422b-91ae-364da2661108)
http://www.reddit.com/r/netsec/comments/2ihen0/new_class_of_vulnerability_in_perl_web/ (af854a3a-2127-422b-91ae-364da2661108)
http://www.securitytracker.com/id/1030978 (af854a3a-2127-422b-91ae-364da2661108)
https://bugzilla.mozilla.org/show_bug.cgi?id=1074812 Patch (af854a3a-2127-422b-91ae-364da2661108)
https://security.gentoo.org/glsa/201607-11 (af854a3a-2127-422b-91ae-364da2661108)