7 matches found
Mandriva Linux Security Advisory : otrs (MDVSA-2015:043)
Updated otrs package fixes security vulnerability : An attacker with valid OTRS credentials could access and manipulate ticket data of other users via the GenericInterface, if a ticket webservice is configured and not additionally secured CVE-2014-9324. %NASLMINLEVEL 70300 C Tenable Network...
openSUSE Security Update : otrs (openSUSE-SU-2015:0117-1)
This update fixes the following issue: CVE-2014-9324: The GenericInterface in OTRS Help Desk access-control problems bnc910988 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2015-53...
MGASA-2015-0031 Updated otrs package fixes CVE-2014-9324
Updated otrs package fixes security vulnerability: An attacker with valid OTRS credentials could access and manipulate ticket data of other users via the GenericInterface, if a ticket webservice is configured and not additionally secured CVE-2014-9324...
[SECURITY] [DSA 3124-1] otrs2 security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3124-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso January 10, 2015 http://www.debian.org/security/faq -...
OTRS 3.2.x < 3.2.17, 3.3.x < 3.3.11, 4.x < 4.0.3 Help Desk Privilege Escalation Vulnerability (Dec 2014)
Open Ticket Request System OTRS Help Desk is prone to a privilege escalation vulnerability. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE...
CVE-2014-9324
The GenericInterface in OTRS Help Desk 3.2.x before 3.2.17, 3.3.x before 3.3.11, and 4.0.x before 4.0.3 allows remote authenticated users to access and modify arbitrary tickets via unspecified vectors...
CVE-2014-9324
CVE-2014-9324 affects OTRS Help Desk: GenericInterface access-control problems allow remote authenticated users to access and modify ticket data. Affected versions are OTRS 3.2.x before 3.2.17, 3.3.x before 3.3.11, and 4.0.x before 4.0.3. Consequences include unauthorized ticket data access/manip...