Lucene search
HistoryOct 03, 2022 - 4:13 p.m.
CVE-2008-7280
cve-2008-7280
kernel
system
emailparser
postmasterpop3.pl
otrs
denial of service
e-mail retrieval outage
utf-8
nvd
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
6.7 Medium
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
60.4%
Kernel/System/EmailParser.pm in PostmasterPOP3.pl in Open Ticket Request System (OTRS) before 2.2.7 does not properly handle e-mail messages containing malformed UTF-8 characters, which allows remote attackers to cause a denial of service (e-mail retrieval outage) via a crafted message.
Affected configurations
Node
otrsotrsRange≤2.2.6
ORotrsotrsMatch0.5beta1
ORotrsotrsMatch0.5beta2
ORotrsotrsMatch0.5beta3
ORotrsotrsMatch0.5beta4
ORotrsotrsMatch0.5beta5
ORotrsotrsMatch0.5beta6
ORotrsotrsMatch0.5beta7
ORotrsotrsMatch0.5beta8
ORotrsotrsMatch1.0rc1
ORotrsotrsMatch1.0rc2
ORotrsotrsMatch1.0rc3
ORotrsotrsMatch1.0.0
ORotrsotrsMatch1.0.1
ORotrsotrsMatch1.0.2
ORotrsotrsMatch1.1rc1
ORotrsotrsMatch1.1.0rc1
ORotrsotrsMatch1.1.0rc2
ORotrsotrsMatch1.1.1
ORotrsotrsMatch1.1.2
ORotrsotrsMatch1.1.3
ORotrsotrsMatch1.1.4
ORotrsotrsMatch1.2.0beta1
ORotrsotrsMatch1.2.0beta2
ORotrsotrsMatch1.2.0beta3
ORotrsotrsMatch1.2.1
ORotrsotrsMatch1.2.2
ORotrsotrsMatch1.2.3
ORotrsotrsMatch1.2.4
ORotrsotrsMatch1.3.0beta1
ORotrsotrsMatch1.3.0beta2
ORotrsotrsMatch1.3.0beta3
ORotrsotrsMatch1.3.0beta4
ORotrsotrsMatch1.3.1
ORotrsotrsMatch1.3.2
ORotrsotrsMatch1.3.3
ORotrsotrsMatch2.0.0
ORotrsotrsMatch2.0.0beta1
ORotrsotrsMatch2.0.0beta2
ORotrsotrsMatch2.0.0beta4
ORotrsotrsMatch2.0.0beta5
ORotrsotrsMatch2.0.0beta6
ORotrsotrsMatch2.0.1
ORotrsotrsMatch2.0.2
ORotrsotrsMatch2.0.3
ORotrsotrsMatch2.0.4
ORotrsotrsMatch2.0.5
ORotrsotrsMatch2.1.0beta1
ORotrsotrsMatch2.1.0beta2
ORotrsotrsMatch2.1.1
ORotrsotrsMatch2.1.2
ORotrsotrsMatch2.1.3
ORotrsotrsMatch2.1.4
ORotrsotrsMatch2.1.5
ORotrsotrsMatch2.1.6
ORotrsotrsMatch2.1.7
ORotrsotrsMatch2.1.8
ORotrsotrsMatch2.1.9
ORotrsotrsMatch2.2.0beta1
ORotrsotrsMatch2.2.0beta2
ORotrsotrsMatch2.2.0beta3
ORotrsotrsMatch2.2.0beta4
ORotrsotrsMatch2.2.0rc1
ORotrsotrsMatch2.2.1
ORotrsotrsMatch2.2.2
ORotrsotrsMatch2.2.3
ORotrsotrsMatch2.2.4
ORotrsotrsMatch2.2.5
Related
debiancve
debiancve
CVE-2008-7280
2022-10-03 16:13:53
ubuntucve
ubuntucve
CVE-2008-7280
2011-03-18 00:00:00
prion
prion
Design/Logic Flaw
2011-03-18 16:55:00
nvd
nvd
CVE-2008-7280
2011-03-18 16:55:01
cvelist
cvelist
CVE-2008-7280
2022-10-03 16:13:53
openvas
openvas
OTRS < 2.2.7 Email Multiple Vulnerabilities
2013-09-17 00:00:00
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
6.7 Medium
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
60.4%
Related for CVE-2008-7280