OTRS Email From Line Denial Of Service Vulnerability Network Vulnerability

Summary

This host is installed with OTRS (Open Ticket Request System) and is prone to denial of service vulnerability.

Impact

Successful exploitation will allow remote attackers to cause a denial of service condition by sending a crafted message to a POP3 mailbox. Impact Level: Application

Solution

Upgrade to OTRS (Open Ticket Request System) version 2.3.6 or later, For updates refer to http://www.otrs.com/en/

Insight

An error exists in the application while handling e-mail messages which contains UTF-8 characters in the From line

Affected

OTRS (Open Ticket Request System) version before 2.3.6

Detection

Get the installed version of OTRS with the help of detect NVT and check the version is vulnerable or not.

References

http://osvdb.org/74102

Updated on 2015-03-25

Severity

Classification

CVE CVE-2010-4767

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:N/I:N/A:P

Related Vulnerabilities

Aker Secure Mail Gateway Cross-Site Scripting Vulnerability
Apache Roller 'q' Parameter Cross Site Scripting Vulnerability
Apache Rave User Information Disclosure Vulnerability
Adobe Presenter viewer.swf and loadflash.js XSS Vulnerability
Apache Continuum Cross Site Scripting Vulnerability

OTRS Email From Line Denial of Service Vulnerability

Take action and discover your vulnerabilities