CVE-2004-0702

First published: Wed Jul 21 2004(Updated: )

DBI in Bugzilla 2.17.1 through 2.17.7 displays the database password in an error message when the SQL server is not running, which could allow remote attackers to gain sensitive information.

Credit: cve@mitre.org

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

• collector/nvd-historical
• collector/nvd-index
• agent/softwarecombine
• agent/type
• collector/mitre-cve
• source/MITRE
• agent/last-modified-date
• agent/author
• agent/severity
• agent/weakness
• agent/remedy
• agent/references
• agent/tags
• agent/first-publish-date
• agent/description
• agent/event
• agent/source
• vendor/mozilla
• canonical/mozilla bugzilla
• version/mozilla bugzilla/2.17.6
• version/mozilla bugzilla/2.16.1
• version/mozilla bugzilla/2.16.2
• version/mozilla bugzilla/2.17.4
• version/mozilla bugzilla/2.10
• version/mozilla bugzilla/2.17.1
• version/mozilla bugzilla/2.16
• version/mozilla bugzilla/2.14.2
• version/mozilla bugzilla/2.14.3
• version/mozilla bugzilla/2.14.4
• version/mozilla bugzilla/2.6
• version/mozilla bugzilla/2.17.5
• version/mozilla bugzilla/2.17.3
• version/mozilla bugzilla/2.4
• version/mozilla bugzilla/2.16.4
• version/mozilla bugzilla/2.12
• version/mozilla bugzilla/2.8
• version/mozilla bugzilla/2.16.3
• version/mozilla bugzilla/2.14.5
• version/mozilla bugzilla/2.17.7
• version/mozilla bugzilla/2.17
• version/mozilla bugzilla/2.14.1
• version/mozilla bugzilla/2.16.5
• version/mozilla bugzilla/2.14