Required CVE Record Information
Description
reportbug 3.2 includes settings from .reportbugrc in bug reports, which exposes sensitive information such as smtpuser and smtppasswd.
References 6 Total
- https://bugzilla.ubuntu.com/show_bug.cgi?id=6600
- https://bugzilla.ubuntu.com/show_bug.cgi?id=6717
- http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=295407
- exchange.xforce.ibmcloud.com: reportbug-smtppasswd-information-disclosure(19520) vdb-entry
- marc.info: 20050228 [USN-88-1] reportbug information disclosure mailing-list
- secunia.com: 14422 third-party-advisory
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 6 Total
- https://bugzilla.ubuntu.com/show_bug.cgi?id=6600 x_transferred
- https://bugzilla.ubuntu.com/show_bug.cgi?id=6717 x_transferred
- http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=295407 x_transferred
- exchange.xforce.ibmcloud.com: reportbug-smtppasswd-information-disclosure(19520) vdb-entryx_transferred
- marc.info: 20050228 [USN-88-1] reportbug information disclosure mailing-listx_transferred
- secunia.com: 14422 third-party-advisoryx_transferred