[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244625

 
 

909

 
 

193379

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

DSA-2712-1 otrs2 -- privilege escalation

ID: oval:org.secpod.oval:def:601060Date: (C)2013-06-19   (M)2022-10-10
Class: PATCHFamily: unix




It was discovered that users with a valid agent login could use crafted URLs to bypass access control restrictions and read tickets to which they should not have access. The oldstable distribution is not affected by this problem.

Platform:
Debian 7.0
Product:
otrs2
Reference:
DSA-2712-1
CVE-2013-4088
CVE    1
CVE-2013-4088
CPE    2
cpe:/a:otrs:otrs
cpe:/o:debian:debian_linux:7.0

© SecPod Technologies