Lucene search

K
ubuntucveUbuntu.comUB:CVE-2011-2083
HistoryJun 04, 2012 - 12:00 a.m.

CVE-2011-2083

2012-06-0400:00:00
ubuntu.com
ubuntu.com
13

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

EPSS

0.003

Percentile

65.5%

Multiple cross-site scripting (XSS) vulnerabilities in Best Practical
Solutions RT 3.x before 3.8.12 and 4.x before 4.0.6 allow remote attackers
to inject arbitrary web script or HTML via unspecified vectors.

Bugs

Notes

Author Note
jdstrand regressions found in DSA-2480 (see bugs)
OSVersionArchitecturePackageVersionFilename
ubuntu10.04noarchrequest-tracker3.8< 3.8.7-1ubuntu2.3UNKNOWN
ubuntu11.10noarchrequest-tracker3.8< 3.8.10-1ubuntu0.1UNKNOWN
ubuntu12.04noarchrequest-tracker3.8< 3.8.11-1ubuntu0.1UNKNOWN

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

EPSS

0.003

Percentile

65.5%