CVE-2014-9324
CVE-2014-9324
The GenericInterface in OTRS Help Desk 3.2.x before 3.2.17, 3.3.x before 3.3.11, and 4.0.x before 4.0.3 allows remote authenticated users to access and modify arbitrary tickets via unspecified vectors.
Produtos afetados
n/a · n/aQuer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
http://advisories.mageia.org/MGASA-2015-0031.htmlhttp://secunia.com/advisories/59875http://secunia.com/advisories/62188http://secunia.com/advisories/62662https://www.otrs.com/security-advisory-2014-06-incomplete-access-control/http://www.mandriva.com/security/advisories?name=MDVSA-2015:043