Summary
This host is installed with OTRS (Open Ticket Request System) and is prone to denial of service vulnerability.
Impact
Successful exploitation will allow remote authenticated users to cause a denial of service condition.
Impact Level: Application
Solution
Upgrade to OTRS (Open Ticket Request System) version 3.0.0-beta7 or later, For updates refer to http://www.otrs.com/en/
Insight
An error exists in AgentTicketSearch.pm which fails to restrict the ticket ages that are within the scope of a search
Affected
OTRS (Open Ticket Request System) version before 3.0.0-beta7
Detection
Get the installed version of OTRS with the help of detect NVT and check the version is vulnerable or not.
References
Updated on 2015-03-25
Severity
Classification
-
CVE CVE-2010-4759 -
CVSS Base Score: 4.0
AV:N/AC:L/Au:S/C:N/I:N/A:P
Related Vulnerabilities
- Apache Archiva Home Page Cross-Site Scripting vulnerability
- Alt-N WebAdmin Remote Source Code Information Disclosure Vulnerability
- Adobe ColdFusion Multiple Cross Site Scripting Vulnerabilities
- Apache Open For Business HTML injection vulnerability
- Apache ActiveMQ 'Cron Jobs' Cross Site Scripting Vulnerability