CVE-2011-2385
N/A
N/A
Summary
The iPhoneHandle package 0.9.x before 0.9.7 and 1.0.x before 1.0.3 in Open Ticket Request System (OTRS) does not properly restrict use of the iPhoneHandle interface, which allows remote authenticated users to gain privileges, and consequently read or modify OTRS core objects, via unspecified vectors.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- http://osvdb.org/73885
- http://otrs.org/advisory/OSA-2011-02-en/
- https://exchange.xforce.ibmcloud.com/vulnerabilities/68558
- http://www.securityfocus.com/bid/48678
- http://secunia.com/advisories/45227
References
- http://osvdb.org/73885
- http://otrs.org/advisory/OSA-2011-02-en/
- https://exchange.xforce.ibmcloud.com/vulnerabilities/68558
- http://www.securityfocus.com/bid/48678
- http://secunia.com/advisories/45227
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.