Bugzilla Authentication Bypass and Information Disclosure
Medium Nessus Network Monitor Plugin ID 2372
SynopsisThe remote host is vulnerable to a flaw that allows for the bypassing of authentication.
DescriptionThe remote server is running Bugzilla, a bug tracking system. There is a flaw in the remote installation of Bugzilla that may allow an attacker to bypass authentication or to get access to private bug reports.
SolutionUpgrade to version 2.14.5, 2.16.2, 2.17.3 or higher.