Lucene search
PRIOn knowledge basePRION:CVE-2010-4758HistoryMar 18, 2011 - 4:55 p.m.
Input validation
2011-03-1816:55:00
PRIOn knowledge base
www.prio-n.com
1
installer.pl in Open Ticket Request System (OTRS) before 3.0.3 has an Inbound Mail Password field that uses the text type, instead of the password type, for its INPUT element, which makes it easier for physically proximate attackers to obtain the password by reading the workstation screen.
| CPE | Name | Operator | Version |
|---|---|---|---|
| otrs | eq | 2.4.0 beta6 | |
| otrs | eq | 2.4.0 beta5 | |
| otrs | eq | 2.0.0 beta4 | |
| otrs | eq | 2.0.0 beta2 | |
| otrs | eq | 2.3.0 beta2 | |
| otrs | eq | 2.4.1 | |
| otrs | eq | 2.1.3 | |
| otrs | eq | 2.2.4 | |
| otrs | eq | 2.2.5 | |
| otrs | eq | 2.4.10 |
Related
nvd
nvd
CVE-2010-4758
2011-03-18 16:55:01
openvas
openvas
OTRS < 3.0.3 installer.pl Password Disclosure Vulnerability
2013-09-21 00:00:00
debiancve
debiancve
CVE-2010-4758
2022-10-03 16:21:06
cve
cve
CVE-2010-4758
2022-10-03 16:21:06
cvelist
cvelist
CVE-2010-4758
2022-10-03 16:21:06
ubuntucve
ubuntucve
CVE-2010-4758
2011-03-18 00:00:00