Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2010-4767HistoryMar 18, 2011 - 4:55 p.m.
CVE-2010-4767
2011-03-1816:55:01
Debian Security Bug Tracker
security-tracker.debian.org
9
otrs
vulnerability
email
utf-8
diacritical marks
charset
denial of service
pop3
unix
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
EPSS
0.003
Percentile
71.1%
Open Ticket Request System (OTRS) before 2.3.6 does not properly handle e-mail messages in which the From line contains UTF-8 characters associated with diacritical marks and an invalid charset, which allows remote attackers to cause a denial of service (duplicate tickets and duplicate auto-responses) by sending a crafted message to a POP3 mailbox.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 11 | all | otrs2 | < 2.4.5-1 | otrs2_2.4.5-1_all.deb |
Related
cvelist
cvelist
CVE-2010-4767
2011-03-18 16:00:00
cve
cve
CVE-2010-4767
2011-03-18 16:55:01
openvas
openvas
OTRS < 2.3.6 Email From Line DoS Vulnerability
2013-09-22 00:00:00
prion
prion
Open redirect
2011-03-18 16:55:00
nvd
nvd
CVE-2010-4767
2011-03-18 16:55:01
ubuntucve
ubuntucve
CVE-2010-4767
2011-03-18 00:00:00
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
EPSS
0.003
Percentile
71.1%
Related for DEBIANCVE:CVE-2010-4767