Unrated severityNVD Advisory· Published Aug 12, 2002· Updated Jun 16, 2026

CVE-2002-0810

Description

Bugzilla 2.14 before 2.14.2, and 2.16 before 2.16rc2, directs error messages from the syncshadowdb command to the HTML output, which could leak sensitive information, including plaintext passwords, if syncshadowdb fails.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

Mozilla Corporation/Bugzilla5 versions
cpe:2.3:a:mozilla:bugzilla:2.14:*:*:*:*:*:*:*+ 4 more
- cpe:2.3:a:mozilla:bugzilla:2.14:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:bugzilla:2.14.1:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:bugzilla:2.16:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:bugzilla:2.16:rc1:*:*:*:*:*:*
- (no CPE)range: >=2.14 <2.14.2 or >=2.16 <2.16rc2

Patches

Vulnerability mechanics

Synthesis attempt was rejected by the grounding validator. Re-run pending.

References

archives.neohapsis.com/archives/bugtraq/2002-06/0054.htmlnvdPatchVendor Advisory
ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SN-02:05.ascnvd
bugzilla.mozilla.org/show_bug.cginvd
www.iss.net/security_center/static/9306.phpnvd
www.osvdb.org/6399nvd
www.redhat.com/support/errata/RHSA-2002-109.htmlnvd
www.securityfocus.com/bid/4964nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000