Lucene search
MitreCVELIST:CVE-2011-1687HistoryApr 22, 2011 - 10:00 a.m.
CVE-2011-1687
2011-04-2210:00:00
mitre
www.cve.org
1
Best Practical Solutions RT 3.0.0 through 3.6.10, 3.8.0 through 3.8.9, and 4.0.0rc through 4.0.0rc7 allows remote authenticated users to obtain sensitive information by using the search interface, as demonstrated by retrieving encrypted passwords.
References
blog.bestpractical.com/2011/04/security-vulnerabilities-in-rt.html
lists.bestpractical.com/pipermail/rt-announce/2011-April/000187.html
lists.bestpractical.com/pipermail/rt-announce/2011-April/000188.html
lists.bestpractical.com/pipermail/rt-announce/2011-April/000189.html
secunia.com/advisories/44189
www.debian.org/security/2011/dsa-2220
www.securityfocus.com/bid/47383
www.vupen.com/english/advisories/2011/1071
bugzilla.redhat.com/show_bug.cgi?id=696795
exchange.xforce.ibmcloud.com/vulnerabilities/66793
Related
prion
prion
Input validation
2011-04-22 10:55:00
cve
cve
CVE-2011-1687
2011-04-22 10:55:02
openvas
openvas
RT (Request Tracker) Search Interface Information Disclosure Vulnerability
2011-05-09 00:00:00
RT (Request Tracker) Search Interface Information Disclosure Vulnerability
2011-05-09 00:00:00
FreeBSD Ports: rt36
2011-05-12 00:00:00
ubuntucve
ubuntucve
CVE-2011-1687
2011-04-22 00:00:00
nvd
nvd
CVE-2011-1687
2011-04-22 10:55:02
altlinux
altlinux
Security fix for the ALT Linux 6 package request-tracker version 3.8.10-alt1
2011-04-19 00:00:00
freebsd
freebsd
rt -- multiple vulnerabilities
2011-04-14 00:00:00
osv
osv
request-tracker3.8 - several
2011-04-19 00:00:00
debian
debian
[SECURITY] [DSA 2220-1] Request Tracker security update
2011-04-19 18:13:04
[BSA-033] Security Update for request-tracker3.8
2011-04-20 15:41:06
securityvulns
securityvulns
[SECURITY] [DSA 2220-1] Request Tracker security update
2011-04-21 00:00:00
nessus
nessus