openSUSE Security Update : otrs (openSUSE-SU-2011:0278-1)

Insufficient quoting of shell meta characters in otrs' webscript.pl could allow remote attackers to execute aribtrary commands CVE-2011-0456. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...

OTRS < 2.3.5 Command Execution Vulnerability

Open Ticket Request System OTRS is prone to a command execution vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

CVE-2011-0456

webscript.pl in Open Ticket Request System OTRS 2.3.4 and earlier allows remote attackers to execute arbitrary commands via unspecified vectors, related to a "command injection vulnerability."...

CVE-2011-0456

OTRS (Open Ticket Request System) versions 2.3.4 and earlier are affected by a remote command execution vulnerability in webscript.pl, described as a command injection issue. Affected component: webscript.pl within OTRS. Root cause: improper handling/quoting of shell commands leading to arbitrary...