16 matches found
Fedora Update for rt FEDORA-2015-4698
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Request Tracker 4.0.x < 4.0.23 / 4.2.x < 4.2.10 Multiple Vulnerabilities
According to its self-reported version number, the Best Practical Solutions Request Tracker RT running on the remote web server is version 4.0.x prior to 4.0.23 or version 4.2.x prior to 4.2.10. It is, therefore, potentially affected by the following vulnerabilities : - A flaw exists in the email...
Fedora Update for rt FEDORA-2015-4666
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 22 : rt-4.2.10-2.fc22 (2015-4698)
Security fix for CVE-2014-9472 Security fix for CVE-2015-1165 Security fix for CVE-2015-1464 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible...
[SECURITY] [DSA 3176-1] request-tracker4 security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3176-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso February 26, 2015 http://www.debian.org/security/faq -...
CVE-2015-1464
RT aka Request Tracker before 4.0.23 and 4.2.x before 4.2.10 allows remote attackers to hijack sessions via an RSS feed URL...
CVE-2015-1464
RT aka Request Tracker before 4.0.23 and 4.2.x before 4.2.10 allows remote attackers to hijack sessions via an RSS feed URL...
CVE-2015-1464
CVE-2015-1464 concerns Request Tracker (RT) session hijacking via an RSS feed URL. The vulnerability affects RT where RSS feed URLs could be exploited to log in as the user who created the feed. Affected are RT 4.0.x before 4.0.23 and RT 4.2.x before 4.2.10. Public advisories (Fedora, Debian) ind...
CVE-2015-1464
RT aka Request Tracker before 4.0.23 and 4.2.x before 4.2.10 allows remote attackers to hijack sessions via an RSS feed URL...
FreeBSD : rt -- Remote DoS, Information disclosure and Session Hijackingvulnerabilities (d08f6002-c588-11e4-8495-6805ca0b3d42)
Best Practical reports : RT 3.0.0 and above, if running on Perl 5.14.0 or higher, are vulnerable to a remote denial-of-service via the email gateway; any installation which accepts mail from untrusted sources is vulnerable, regardless of the permissions configuration inside RT. This...
[SECURITY] [DLA 158-1] request-tracker3.8 security update
Package : request-tracker3.8 Version : 3.8.8-7+squeeze8 CVE ID : CVE-2014-9472 CVE-2015-1165 CVE-2015-1464 Multiple vulnerabilities have been discovered in Request Tracker, an extensible trouble-ticket tracking system. The Common Vulnerabilities and Exposures project identifies the following...
[SECURITY] [DSA 3176-1] request-tracker4 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3176-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso February 26, 2015 http://www.debian.org/security/faq -...
[SECURITY] [DSA 3176-1] request-tracker4 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3176-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso February 26, 2015 http://www.debian.org/security/faq -...
Debian Security Advisory DSA 3176-1 (request-tracker4 - security update)
Multiple vulnerabilities have been discovered in Request Tracker, an extensible trouble-ticket tracking system. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2014-9472 Christian Loos discovered a remote denial of service vulnerability, exploitable via the...
rt -- Remote DoS, Information disclosure and Session Hijackingvulnerabilities
Best Practical reports: RT 3.0.0 and above, if running on Perl 5.14.0 or higher, are vulnerable to a remote denial-of-service via the email gateway; any installation which accepts mail from untrusted sources is vulnerable, regardless of the permissions configuration inside RT. This...
Debian: Security Advisory (DSA-3176-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...