Required CVE Record Information
Description
Mantis 1.0.0rc3 does not properly handle "Make note private" when a bug is being resolved, which has unknown impact and attack vectors, probably related to an information leak.
References 5 Total
- secunia.com: 18481 third-party-advisory
- vupen.com: ADV-2005-3064 vdb-entry
- http://sourceforge.net/project/shownotes.php?release_id=377934&group_id=14963
- http://www.trapkit.de/advisories/TKADV2005-11-002.txt
- debian.org: DSA-944 vendor-advisory
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 5 Total
- secunia.com: 18481 third-party-advisoryx_transferred
- vupen.com: ADV-2005-3064 vdb-entryx_transferred
- http://sourceforge.net/project/shownotes.php?release_id=377934&group_id=14963 x_transferred
- http://www.trapkit.de/advisories/TKADV2005-11-002.txt x_transferred
- debian.org: DSA-944 vendor-advisoryx_transferred