Candidate: CVE-2012-0453
PublicDate: 2012-02-25 04:21:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0453
Description:
 Cross-site request forgery (CSRF) vulnerability in xmlrpc.cgi in Bugzilla
 4.0.2 through 4.0.4 and 4.1.1 through 4.2rc2, when mod_perl is used, allows
 remote attackers to hijack the authentication of arbitrary users for
 requests that modify the product's installation via the XML-RPC API.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_bugzilla:
upstream_bugzilla: not-affected (3.6.2.0-4.5)
hardy_bugzilla: not-affected
lucid_bugzilla: not-affected
maverick_bugzilla: not-affected
natty_bugzilla: not-affected
oneiric_bugzilla: not-affected (3.6.3.0-2)
devel_bugzilla: DNE